This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:sun:sunos:5.4
Detail
VendorSunFirst view 1995-08-29
ProductSunosLast view2012-06-12
Version5.4TypeOs
Edition 
Language 
Update 
 
CPE Productcpe:/o:sun:sunos

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
7.22012-06-12CVE-2012-0217LocalLowNone Requ...
7.22008-06-16CVE-2008-2710LocalLowNone Requ...
102003-04-02CVE-2003-0161NetworkLowNone Requ...
102001-12-31CVE-2001-1583NetworkLowNone Requ...
102001-12-12CVE-2001-0797NetworkLowNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.22001-10-30CVE-2001-0652LocalLowNone Requ...
4.62001-08-14CVE-2001-0565LocalLowNone Requ...
102001-08-14CVE-2001-0554NetworkLowNone Requ...
7.22001-07-02CVE-2001-0422LocalLowNone Requ...
6.42001-07-02CVE-2001-0421NetworkLowNone Requ...
7.52001-06-22CVE-2001-1328NetworkLowNone Requ...
7.22001-06-18CVE-2001-0401LocalLowNone Requ...
102001-06-18CVE-2001-0249NetworkLowNone Requ...
7.22001-03-26CVE-2001-0190LocalLowNone Requ...
7.22001-03-12CVE-2001-0124LocalLowNone Requ...
7.22001-03-12CVE-2001-0115LocalLowNone Requ...
102000-11-14CVE-2000-0844NetworkLowNone Requ...
7.22000-06-14CVE-2000-0471LocalLowNone Requ...
7.22000-01-06CVE-2000-0055LocalLowNone Requ...
101999-12-09CVE-1999-0974NetworkLowNone Requ...
101999-12-07CVE-1999-0973NetworkLowNone Requ...
4.61999-09-22CVE-1999-0786LocalLowNone Requ...
7.21999-09-13CVE-1999-0691LocalLowNone Requ...
7.51999-09-13CVE-1999-0687NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
33% (1)CWE-264Permissions, Privileges, and Access Controls
33% (1)CWE-189Numeric Errors
33% (1)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-24Filter Failure through Buffer Overflow
Hide | Show 10 More...
idName
CAPEC-42MIME Conversion
CAPEC-44Overflow Binary Resource File
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-67String Format Overflow in syslog()
CAPEC-92Forced Integer Overflow
CAPEC-100Overflow Buffers
CAPEC-123Buffer Attacks
CAPEC-219XML Routing Detour Attacks

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:3078CDE AddSuLog Function Buffer Overflow
oval:org.mitre.oval:def:5731A Security Vulnerability in IP Multicast Filter processing of Sockets may lea...
oval:org.mitre.oval:def:5966Security vulnerability in the BIND executable
oval:org.mitre.oval:def:5833Security vulnerability in the BIND executable
oval:org.mitre.oval:def:131Heap Overflow in Solaris 7 xlock
Hide | Show 12 More...
idName
oval:org.mitre.oval:def:10Heap Overflow in Solaris 8 xlock
oval:org.mitre.oval:def:19861DSA-2508-1 kfreebsd-8 - privilege escalation
oval:org.mitre.oval:def:19281CRITICAL PATCH UPDATE OCTOBER 2012
oval:org.mitre.oval:def:15596User Mode Scheduler Memory Corruption Vulnerability (CVE-2012-0217)
oval:org.mitre.oval:def:5482Buffer overflow vulnerability in the CDE Calendar Manager Service Daemon, rpc...
oval:org.mitre.oval:def:2025System V login Buffer Overflow
oval:org.mitre.oval:def:6076automountd can run user programs as root.
oval:org.mitre.oval:def:1844ypbind Daemon Buffer Overflow
oval:org.mitre.oval:def:6051Security vulnerability in the BIND executable
oval:org.mitre.oval:def:1828Buffer Overflow in "in.telnetd"or "telnetd"Process
oval:org.mitre.oval:def:5571ttsession uses weak RPC authentication mechanism
oval:org.mitre.oval:def:555Xsun Buffer Overflow via HOME Envvar

SAINT Exploits

DescriptionLink
System V login argument array buffer overflowMore info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
67346Multiple Unix Vendor rpc.pcnfsd pr_init() Symlink Arbitrary File Permission M...
46193Solaris Kernel SIOCSIPMSFILTER IOCTL Request IP Multicast Filter Local Privil...
15131Solaris in.lpd Crafted Job Request Arbitrary Remote Command Execution
14794Multiple Unix Vendor locale subsystem Multiple Function Format String
14788IBM AIX FTP Client Pipe Character Arbitrary Command Execution
Hide | Show 20 More...
idDescription
13635Red Hat Linux su Failed Password Logging Weakness
11734Multiple Unix rpc.statd Arbitrary File Creation/Deletion
11727syslog Shared Libraries Remote Overflow
11724Multiple Vendor rpc.nisd Long NIS+ Argument Remote Overflow
11723expreserve Race Condition Arbitrary File Overwrite Privilege Escalation
11504BNU UUCP Long Hostname Local Overflow
11492Solaris OpenWindows sdtcm_convert Overflow
11454Multiple Vendor Oversized ICMP Ping Packet DoS
9734ISC BIND CNAME Record Zone Transfer DoS
9733ISC BIND Malformed DNS Message DoS
8747SunOS rpc.cmsd Remote Arbitrary File Overwrite Privilege Escalation
8727Solaris rpcbind Non-standard Port Assignment Filter Bypass
8726Solaris rlogin/FTP Trust Arbitrary Command Execution
8715Multiple Vendor rdist errstring Local Overflow
8698Solaris ypbind Remote Overflow
8684Solaris FTP Forced Core Dump Information Disclosure
8682Solaris tip HOME Environement Variable Local Overflow
8681Solaris FTP Daemon LIST Glob Arbitrary Command Execution
8673Solaris chkperm -n Option Local Overflow
8672Solaris Unprivileged User Core Dump Privilege Escalation

ExploitDB Exploits

idDescription
21180Solaris/SPARC 2.5.1/2.6/7/8 Derived 'login' Buffer Overflow Vulnerability
716Solaris 2.5.1/2.6/7/8 rlogin /bin/login - Buffer Overflow Exploit (SPARC)

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-12-18Name : Fedora Update for xen FEDORA-2012-19828
File : nvt/gb_fedora_2012_19828_xen_fc16.nasl
2012-12-14Name : Fedora Update for xen FEDORA-2012-19717
File : nvt/gb_fedora_2012_19717_xen_fc17.nasl
2012-12-13Name : SuSE Update for xen openSUSE-SU-2012:0886-1 (xen)
File : nvt/gb_suse_2012_0886_1.nasl
2012-11-23Name : Fedora Update for xen FEDORA-2012-18242
File : nvt/gb_fedora_2012_18242_xen_fc17.nasl
2012-11-23Name : Fedora Update for xen FEDORA-2012-18249
File : nvt/gb_fedora_2012_18249_xen_fc16.nasl
Hide | Show 20 More...
idDescription
2012-11-15Name : Fedora Update for xen FEDORA-2012-17204
File : nvt/gb_fedora_2012_17204_xen_fc17.nasl
2012-11-15Name : Fedora Update for xen FEDORA-2012-17408
File : nvt/gb_fedora_2012_17408_xen_fc16.nasl
2012-09-22Name : Fedora Update for xen FEDORA-2012-13434
File : nvt/gb_fedora_2012_13434_xen_fc17.nasl
2012-09-22Name : Fedora Update for xen FEDORA-2012-13443
File : nvt/gb_fedora_2012_13443_xen_fc16.nasl
2012-08-30Name : Fedora Update for xen FEDORA-2012-11182
File : nvt/gb_fedora_2012_11182_xen_fc17.nasl
2012-08-30Name : Fedora Update for xen FEDORA-2012-11755
File : nvt/gb_fedora_2012_11755_xen_fc17.nasl
2012-08-30Name : Fedora Update for xen FEDORA-2012-9386
File : nvt/gb_fedora_2012_9386_xen_fc17.nasl
2012-08-24Name : Fedora Update for xen FEDORA-2012-11785
File : nvt/gb_fedora_2012_11785_xen_fc16.nasl
2012-08-10Name : Debian Security Advisory DSA 2501-1 (xen)
File : nvt/deb_2501_1.nasl
2012-08-10Name : Debian Security Advisory DSA 2508-1 (kfreebsd-8)
File : nvt/deb_2508_1.nasl
2012-08-10Name : FreeBSD Ports: FreeBSD
File : nvt/freebsd_FreeBSD16.nasl
2012-08-06Name : Fedora Update for xen FEDORA-2012-11190
File : nvt/gb_fedora_2012_11190_xen_fc16.nasl
2012-07-30Name : CentOS Update for kernel CESA-2012:0721 centos5
File : nvt/gb_CESA-2012_0721_kernel_centos5.nasl
2012-06-28Name : Fedora Update for xen FEDORA-2012-9399
File : nvt/gb_fedora_2012_9399_xen_fc16.nasl
2012-06-28Name : Fedora Update for xen FEDORA-2012-9430
File : nvt/gb_fedora_2012_9430_xen_fc15.nasl
2012-06-15Name : RedHat Update for kernel RHSA-2012:0721-01
File : nvt/gb_RHSA-2012_0721-01_kernel.nasl
2012-06-13Name : Microsoft Windows Kernel Privilege Elevation Vulnerabilities (2711167)
File : nvt/secpod_ms12-042.nasl
2011-09-22Name : Calendar Manager Service rpc.cmsd Service Detection
File : nvt/gb_cde_rpc_cmsd_service_detect.nasl
2009-06-03Name : Solaris Update for /usr/bin/mailx 110957-02
File : nvt/gb_solaris_110957_02.nasl
2009-06-03Name : Solaris Update for cu 111071-01
File : nvt/gb_solaris_111071_01.nasl

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2014-01-10portmap ttdbserv request UDP
RuleID : 588-community - Type : PROTOCOL-RPC - Revision : 26
2014-01-10portmap ttdbserv request UDP
RuleID : 588 - Type : PROTOCOL-RPC - Revision : 26
2014-01-10portmap pcnfsd request UDP
RuleID : 581-community - Type : PROTOCOL-RPC - Revision : 17
2014-01-10portmap pcnfsd request UDP
RuleID : 581 - Type : PROTOCOL-RPC - Revision : 17
2014-01-10portmap nisd request UDP
RuleID : 580-community - Type : PROTOCOL-RPC - Revision : 20
Hide | Show 20 More...
DateDescription
2014-01-10portmap nisd request UDP
RuleID : 580 - Type : PROTOCOL-RPC - Revision : 20
2014-01-10portmap amountd request UDP
RuleID : 576-community - Type : PROTOCOL-RPC - Revision : 16
2014-01-10portmap amountd request UDP
RuleID : 576 - Type : PROTOCOL-RPC - Revision : 16
2014-01-10DOS ttdbserv Solaris
RuleID : 572-community - Type : PROTOCOL-RPC - Revision : 14
2014-01-10DOS ttdbserv Solaris
RuleID : 572 - Type : PROTOCOL-RPC - Revision : 14
2014-01-10EXPLOIT ttdbserv Solaris overflow
RuleID : 571 - Type : RPC - Revision : 10
2014-01-10EXPLOIT ttdbserv solaris overflow
RuleID : 570 - Type : RPC - Revision : 12
2014-01-10Oracle Solaris LPD overflow attempt
RuleID : 3527 - Type : OS-SOLARIS - Revision : 12
2014-01-10PORT bounce attempt
RuleID : 3441-community - Type : PROTOCOL-FTP - Revision : 13
2014-01-10PORT bounce attempt
RuleID : 3441 - Type : PROTOCOL-FTP - Revision : 13
2014-01-10login buffer non-evasive overflow attempt
RuleID : 3274-community - Type : PROTOCOL-TELNET - Revision : 12
2014-01-10login buffer non-evasive overflow attempt
RuleID : 3274 - Type : PROTOCOL-TELNET - Revision : 12
2014-01-10UDP inverse query overflow
RuleID : 3154-community - Type : PROTOCOL-DNS - Revision : 11
2014-01-10UDP inverse query overflow
RuleID : 3154 - Type : PROTOCOL-DNS - Revision : 11
2014-01-10TCP inverse query overflow
RuleID : 3153-community - Type : PROTOCOL-DNS - Revision : 9
2014-01-10TCP inverse query overflow
RuleID : 3153 - Type : PROTOCOL-DNS - Revision : 9
2014-01-10login buffer overflow attempt
RuleID : 3147-community - Type : PROTOCOL-TELNET - Revision : 13
2014-01-10login buffer overflow attempt
RuleID : 3147 - Type : PROTOCOL-TELNET - Revision : 13
2014-01-10named iquery attempt
RuleID : 252 - Type : DNS - Revision : 9
2014-01-10Sendmail RCPT TO prescan too long addresses overflow
RuleID : 2270-community - Type : SERVER-MAIL - Revision : 18

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-11-26Name : The remote OracleVM host is missing one or more security updates.
File : oraclevm_OVMSA-2012-0020.nasl - Type : ACT_GATHER_INFO
2014-11-26Name : The remote OracleVM host is missing one or more security updates.
File : oraclevm_OVMSA-2012-0021.nasl - Type : ACT_GATHER_INFO
2014-11-26Name : The remote OracleVM host is missing one or more security updates.
File : oraclevm_OVMSA-2012-0022.nasl - Type : ACT_GATHER_INFO
2014-07-26Name : The remote Solaris system is missing a security patch from CPU oct2012.
File : solaris_oct2012_SRU10_5.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-403.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-404.nasl - Type : ACT_GATHER_INFO
2013-09-28Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201309-24.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0721-1.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2012-0721.nasl - Type : ACT_GATHER_INFO
2013-01-25Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_xen-201206-120606.nasl - Type : ACT_GATHER_INFO
2013-01-24Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-0720.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20120612_kernel_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-07-23Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2508.nasl - Type : ACT_GATHER_INFO
2012-06-29Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2501.nasl - Type : ACT_GATHER_INFO
2012-06-28Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_aed44c4ec06711e1b5e0000c299b62e1.nasl - Type : ACT_GATHER_INFO
2012-06-26Name : The remote Fedora host is missing a security update.
File : fedora_2012-9386.nasl - Type : ACT_GATHER_INFO
2012-06-26Name : The remote Fedora host is missing a security update.
File : fedora_2012-9399.nasl - Type : ACT_GATHER_INFO
2012-06-26Name : The remote Fedora host is missing a security update.
File : fedora_2012-9430.nasl - Type : ACT_GATHER_INFO
2012-06-14Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2012-0721.nasl - Type : ACT_GATHER_INFO
2012-06-13Name : The Windows kernel is affected by multiple elevation of privilege vulnerabili...
File : smb_nt_ms12-042.nasl - Type : ACT_GATHER_INFO
2012-06-13Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_xen-201206-8180.nasl - Type : ACT_GATHER_INFO
2012-06-13Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2012-0721.nasl - Type : ACT_GATHER_INFO
2007-09-25Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHNE_35483.nasl - Type : ACT_GATHER_INFO
2007-09-25Name : The remote HP-UX host is missing a security-related patch.
File : hpux_PHNE_35484.nasl - Type : ACT_GATHER_INFO
2007-05-25Name : An ONC RPC portmapper is running on the remote host.
File : rpc_portmap_port32771.nasl - Type : ACT_GATHER_INFO