This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Sun First view 2001-08-14
Product Solaris Last view 2008-06-16
Version 2.6 Type Os
Update *  
Edition sparc  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:sun:solaris

Activity : Overall

Related : CVE

  Date Alert Description
7.2 2008-06-16 CVE-2008-2710

Integer signedness error in the ip_set_srcfilter function in the IP Multicast Filter in uts/common/inet/ip/ip_multi.c in the kernel in Sun Solaris 10 and OpenSolaris before snv_92 allows local users to execute arbitrary code in other Solaris Zones via an SIOCSIPMSFILTER IOCTL request with a large value of the imsf->imsf_numsrc field, which triggers an out-of-bounds write of kernel memory. NOTE: this was reported as an integer overflow, but the root cause involves the bypass of a signed comparison.

10 2002-05-29 CVE-2002-0033

Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name.

7.2 2002-04-02 CVE-2002-0158

Buffer overflow in Xsun on Solaris 2.6 through 8 allows local users to gain root privileges via a long -co (color database) command line argument.

4.6 2001-08-14 CVE-2001-0565

Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-189 Numeric Errors

SAINT Exploits

Description Link
cachefsd heap overflow More info here

Open Source Vulnerability Database (OSVDB)

id Description
46193 Solaris Kernel SIOCSIPMSFILTER IOCTL Request IP Multicast Filter Local Privil...
8704 SCO Xsco -co Argument Local Overflow
8703 Solaris Xsun -co Argument Local Overflow
1788 Multiple Vendor mailx -F Command Line Overflow
779 Solaris RPC cachefsd cfsd_calloc Function Remote Overflow

OpenVAS Exploits

id Description
2009-06-03 Name : Solaris Update for /usr/bin/mailx 110957-02
File : nvt/gb_solaris_110957_02.nasl

Snort® IPS/IDS

Date Description
2014-01-10 portmap cachefsd request TCP
RuleID : 1747-community - Type : PROTOCOL-RPC - Revision : 18
2014-01-10 portmap cachefsd request TCP
RuleID : 1747 - Type : PROTOCOL-RPC - Revision : 18
2014-01-10 portmap cachefsd request UDP
RuleID : 1746-community - Type : PROTOCOL-RPC - Revision : 20
2014-01-10 portmap cachefsd request UDP
RuleID : 1746 - Type : PROTOCOL-RPC - Revision : 20

Nessus® Vulnerability Scanner

id Description
2003-10-16 Name: The remote server is affected by multiple local privilege escalation vulnerab...
File: openserver_overflows.nasl - Type: ACT_GATHER_INFO
2002-05-08 Name: The remote RPC service is potentially affected by multiple vulnerabilities.
File: cachefsd_overflow.nasl - Type: ACT_GATHER_INFO