EUVD-2015-0388

Malware in sbrugna...

CVE-2015-4920

CVE-2015-4920 is a Solaris 11 vulnerability affecting the NDMP Backup Service component. The connected documents indicate it enables local users to impact integrity via NDMP-related operations, with the issue tied to Solaris 11 patches in the Jan 2016 CPU (SRU11_3_0_0_0) set, which lists CVE-2015...

CVE-2016-0416

CVE-2016-0416 affects Oracle Solaris 11, specifically the System Archive Utility. The vulnerability allows remote attackers to affect integrity via unknown vectors over the network; authentication is not required and the impact is listed as Partial Integrity. CVSS metrics from NVD indicate an att...

CVE-2015-4922

CVE-2015-4922 affects Oracle Solaris 11, with the vulnerability located in the Boot component. The available connected documents indicate a local-privilege path allowing a partial denial of service to Solaris, but do not provide explicit technical root-cause details beyond this, nor concrete expl...

CVE-2016-0440

CVE-2016-0440 affects Oracle Solaris 11, with a vulnerability in the NFSv4 component that enables remote attackers to impact availability via unauthenticated network actions related to NFSv4. The Connected documents confirm the vulnerability is associated with Solaris 11 and NFSv4, and they descr...

CVE-2016-0493

CVE-2016-0493 applies to Oracle Solaris 11, describing an unspecified vulnerability in the Solaris Kernel Cryptography component. The issue permits local attackers to impact integrity and availability via unknown vectors related to Kernel Cryptography. Exploitation details in the provided documen...

CVE-2016-0458

CVE-2016-0458 targets Oracle Sun Solaris 11 and involves the Solaris kernel’s Kernel DAX component. Connected sources describe an unspecified vulnerability in the Kernel DAX area that can affect availability. NVD notes local users compromising availability, while CNVD references a remote-exploita...

CVE-2016-0406

CVE-2016-0406 affects Oracle Solaris 11, specifically the Libc Library component. The connected sources indicate an unspecified vulnerability in Solaris Libc that could allow local users to impact integrity and availability. The CNVD/NVD entries consistently name Solaris Libc as the affected subc...

CVE-2016-0403

CVE-2016-0403 is an impact described in connected sources as a Solaris SMB Utilities component denial-of-service vulnerability on Oracle Solaris 11. It allows remote attackers to cause a complete denial of service via SMB, with the underlying issue tied to the SMB Utilities component. The exploit...

CVE-2016-0419

Technical details are not publicly available in the provided documents. Monitor for updates.

CVE-2016-0418

Public technical details specific to CVE-2016-0418 (product, version, root cause, or fix) are not provided in the connected documents. Monitor for updates; available sources describe Solaris Kernel Zones vulnerabilities at a high level without CVE-2016-0418 specifics.

CVE-2015-4922

Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via vectors related to Boot...

CVE-2016-0428

Solaris 11 Verified Boot component has an unspecified vulnerability that enables local attackers to cause denial of service (hang/crash) of the OS. Multiple connected sources (CNVD-2016-00549, NVD/NASL plugin) explicitly describe a local DoS impact tied to the Solaris Verified Boot, with no publi...

CVE-2014-6600

CVE-2014-6600 is an unspecified local-file-system vulnerability in Oracle Solaris 11 that affects availability. Evidence from the Oracle Jan 2015 CPU (SRU11_2_4_6_0) and Tenable NASL plugins confirms vulnerability in the Solaris File System subcomponent with local access and potential complete de...

CVE-2015-0378

CVE-2015-0378 is an Oracle Solaris 11 local vulnerability affecting the Libc component. The connected Nessus/SRU plugin explicitly ties CVE-2015-0378 to the Libc subsystem and describes an easily exploitable condition that can lead to partial denial of service (DOS) via local access. The Solaris ...

CVE-2015-0397

CVE-2015-0397 is an unspecified local vulnerability in Oracle Solaris 11, affecting the File System subcomponent and impacting availability. The vulnerability is exploited locally via unknown vectors, with a partial denial of service impact as described in the associated NASL entries for the Sola...

CVE-2014-6570

CVE-2014-6570 is a local, unspecified vulnerability in Oracle Solaris 11 affecting the File System component, with impact stated as a denial or availability issue. The advisory context across connected documents confirms Solaris 11 is the affected platform, and that patches addressing this and re...

CVE-2014-6501

CVE-2014-6501 is referenced in Oracle Solaris 11 as a local-privilege/confidentiality issue related to SSH. The connected documents provide concrete details that Solaris 11 SSH is affected and that this CVE is among fixes in the Oracle OCT2014 CPU (and a Nessus plugin notes the SSH subcomponent v...

CVE-2014-6529

CVE-2014-6529 affects Oracle Solaris 11, with the Hermon HCA PCIe driver as the vulnerable component. The vulnerability is described as unspecified in the driver, enabling remote attackers to impact confidentiality, integrity, and availability. The linked Oracle Oct2014 CPU advisory (and the Sola...

CVE-2014-6490

CVE-2014-6490 is a Solaris 11 vulnerability affecting the SMB server user component. The issue enables unauthenticated, network-based SMB access that can cause a partial denial of service on affected Solaris systems. The related Oracle Solaris oct2014 CPU advisory/patch set addresses this and oth...