EUVD-2012-1703

Malware in sbrugna...

Solaris/SPARC - setuid(0) + chmod (/bin/ksh) + exit(0) Shellcode

/ sparcsolarischmod.c - Solaris/SPARC chmod shellcode Copyright c 2022 Marco Ivaldi Solaris/SPARC setuid/chmod/exit shellcode. Tested on: SunOS 5.10 GenericVirtual sun4u sparc SUNW,SPARC-Enterprise / char sc = / Solaris/SPARC chmod shellcode 12 + 32 + 20 = 64 bytes / / setuid0 / "\x90\x08\x3f\xff...

Design/Logic Flaw

Unspecified vulnerability in Oracle SPARC Enterprise T & M Series Servers running Sun System Firmware before 6.7.13 for SPARC T1, 7.4.6.c for SPARC T2, 8.3.0.b for SPARC T3 & T4, 9.0.0.d for SPARC T5 and 9.0.1.e for SPARC M5 allows local users to affect availability via unknown vectors related to...

CVE-2013-3773

Unspecified vulnerability in the SPARC Enterprise M Series Servers component in Oracle and Sun Systems Products Suite XCP 1114 and earlier allows remote attackers to affect availability via vectors related to XSCF Control Package XCP...

Design/Logic Flaw

Unspecified vulnerability in the SPARC Enterprise M Series Servers component in Oracle and Sun Systems Products Suite XCP 1114 and earlier allows remote attackers to affect availability via vectors related to XSCF Control Package XCP...

CVE-2012-1693

Unspecified vulnerability in Oracle SPARC Enterprise M Series Servers XCP 1110 allows remote attackers to affect availability, related to XSCF Control Package XCP...

CVE-2011-2299

Unspecified vulnerability in Oracle SPARC Enterprise M3000, M4000, M5000, M8000, and M9000 XCP 1101 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to XSCF Control Package XCP...

CVE-2011-2299

Unspecified vulnerability in Oracle SPARC Enterprise M3000, M4000, M5000, M8000, and M9000 XCP 1101 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to XSCF Control Package XCP...

servicetags NSE Script

Attempts to extract system information OS, hardware, etc. from the Sun Service Tags service agent UDP port 6481. Based on protocol specs from Example Usage nmap -sU -p 6481 --script=servicetags Script Output | servicetags: | URN: urn:st:3bf76681-5e68-415b-f980-abcdef123456 | System: SunOS |...

CVE-2009-0171

The Sun SPARC Enterprise M4000 and M5000 Server, within a certain range of serial numbers, allows remote attackers to use the manufacturing root password, perform a root login to the eXtended System Control Facility Unit aka XSCFU or Service Processor, and have unspecified other impact...

CVE-2008-1369

A certain incorrect Sun Solaris 10 image on SPARC Enterprise T5120 and T5220 servers has /etc/default/login and /etc/ssh/sshdconfig files that configure root logins in a manner unintended by the vendor, which allows remote attackers to gain privileges via unspecified vectors...

CVE-2007-6360

The CVE-2007-6360 issue affects Sun eXtended System Control Facility (XSCF) Control Package (XCP) firmware before 1050 on SPARC Enterprise M4000, M5000, M8000, and M9000 servers. The vulnerability allows remote attackers to trigger memory exhaustion via network traffic (telnet, ssh, or http), cau...

CVE-2007-6360

Unspecified vulnerability in the Sun eXtended System Control Facility XSCF Control Package XCP firmware before 1050 on SPARC Enterprise M4000, M5000, M8000, and M9000 servers allows remote attackers to cause a denial of service reboot via 1 telnet, 2 ssh, or 3 http network traffic that triggers...