Solaris 10 (sparc) : 146834-02

Vulnerability in the Solaris component of Oracle Sun Products Suite subcomponent: Kernel. Supported versions that are affected are 9, 10 and 11. Easily exploitable vulnerability requiring logon to Operating System. Successful attack of this vulnerability can result in unauthorized Operating Syste...

Solaris <= 2.5.1 automount Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/235/info The automounter daemon automountd answers file system mount and unmount requests from the autofs filesystem via RPC. A vulnerability has been discovered that may allow an unauthorized user to send arbitrary...

Symlink attack with Solaris Update manager and Sun Patch Cluster

Symlink attack with Solaris Update manager and Sun Patch Cluster Larry W. Cashdollar Vapid Labs http://vapid.dhs.org 1/24/2010 With the GUI Sun Update Manager being used to install patches on a system local users can easily run scripts and create symlinks in an attempt to clobber files and...

Solaris Update Manager / Sun Patch Cluster Symlink Attack

Symlink attack with Solaris Update manager and Sun Patch Cluster Larry W. Cashdollar Vapid Labs http://vapid.dhs.org 1/24/2010 With the GUI Sun Update Manager being used to install patches on a system local users can easily run scripts and create symlinks in an attempt to clobber files and...

Solaris Update manager and Sun Patch Cluster symlink vulnerability

Exploit for solaris platform in category local exploits ================================================================== Solaris Update manager and Sun Patch Cluster symlink vulnerability ================================================================== Symlink attack with Solaris Update manag...

Solaris 10 (x86) : 139621-01 (deprecated)

CDE 1.6x86: DtHelp patch. Date this patch was last updated by Sun : Sep/22/09 This plugin has been deprecated and either replaced with individual 139621 patch-revision plugins, or deemed non-security related. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2018/03/12...

Sun SunView rpc.selection_svc远程文件泄露漏洞

selectionsvc是SunOS系统下一个RPC服务。 早期SunOS系统下的的selectionsvc RPC服务程序实现上存在漏洞，允许攻击者源程读取目标系统上的任意文件。 在Sun3和Sun4系统中，远程用户可以读取任何SunView运行用户可读的文件。而在i386平台下，远程用户可以读取运行SunView的工作站上的任意文件。注意，如果root运行了SunView，那么所有的文件就都可能被远程系统所访问。...

snmpXdmid overflow

The remote RPC service 100249 snmpXdmid is vulnerable to a heap overflow which allows any user to obtain a root shell on this host. SPDX-FileCopyrightText: 2001 Intranode Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Solaris 9 (sparc) : 115172-01

SunOS 5.9: kernel/drv/le Patch. Date this patch was last updated by Sun : Sep/15/03 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

Solaris 2.6, 7, 8

Hello, Solaris 2.6, 7, and 8 /bin/login has a vulnerability involving the environment variable TTYPROMPT. This vulnerability has already been reported to BugTraq and a patch has been released by Sun. However, a very simple exploit, which does not require any code to be compiled by an attacker,...

Solaris 2.5.1 - automount Local Privilege Escalation

Solaris 2.5.1 - automount Local Privilege Escalation / source: https://www.securityfocus.com/bid/235/info The automounter daemon automountd answers file system mount and unmount requests from the autofs filesystem via RPC. A vulnerability has been discovered that may allow an unauthorized user to...