Shodan
Vulnerabilities
Vulnerable Software
Sun:  >> Solaris  >> 9.0  Security Vulnerabilities
CVE-2005-3099
Unspecified vulnerability in the (1) Xsun and (2) Xprt commands in Solaris 7, 8, 9, and 10 allows local users to execute arbitrary code.
CVSS Score
4.6
EPSS Score
0.001
Published
2005-09-28
CVE-2005-3071
Unspecified vulnerability in Unix File System (UFS) on Solaris 8 and 9, when logging is enabled, allows local users to cause a denial of service ("soft hang") via certain write operations to UFS.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-09-27
CVE-2005-2072
The runtime linker (ld.so) in Solaris 8, 9, and 10 trusts the LD_AUDIT environment variable in setuid or setgid programs, which allows local users to gain privileges by (1) modifying LD_AUDIT to reference malicious code and possibly (2) using a long value for LD_AUDIT.
CVSS Score
7.2
EPSS Score
0.003
Published
2005-06-29
CVE-2005-2032
Unknown vulnerability in lpadmin on Sun Solaris 7, 8, and 9 allows local users to overwrite arbitrary files.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-06-16
CVE-2005-1591
Unknown vulnerability in NIS+ on Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (rpc.nisd disabled and NIS+ unavailable) via unknown vectors.
CVSS Score
5.0
EPSS Score
0.007
Published
2005-05-16
CVE-2005-1518
Unknown vulnerability in Solaris 7 through 9, when using Federated Naming Services (FNS), autofs, and FNS X.500 configuration, allows local users to cause a denial of service (automountd crash) when "accessing" /xfn/_x500.
CVSS Score
2.1
EPSS Score
0.001
Published
2005-05-11
CVE-2005-0248
The Solaris Management Console (SMC) GUI for Solaris 8 and 9, when creating user accounts that are configured for password aging, creates the accounts with a blank password, which allows remote or local attackers to break into those accounts.
CVSS Score
7.5
EPSS Score
0.006
Published
2005-05-02
CVE-2005-0426
Unknown vulnerability in Solaris 8 and 9 allows remote attackers to cause a denial of service (panic) via "Heavy UDP Usage" that triggers a NULL dereference.
CVSS Score
5.0
EPSS Score
0.007
Published
2005-05-02
CVE-2005-0576
Unknown vulnerability in Standard Type Services Framework (STSF) Font Server Daemon (stfontserverd) in Solaris 9 allows local users to modify or delete arbitrary files.
CVSS Score
3.6
EPSS Score
0.001
Published
2005-05-02
CVE-2005-0816
Buffer overflow in newgrp in Solaris 7 through 9 allows local users to gain root privileges.
CVSS Score
7.2
EPSS Score
0.001
Published
2005-05-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved