Shodan
Vulnerabilities
Vulnerable Software
Oracle:  >> Solaris  Security Vulnerabilities
CVE-2016-5559
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect integrity via vectors related to Kernel.
CVSS Score
4.1
EPSS Score
0.003
Published
2016-10-25
CVE-2016-5553
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect availability via unknown vectors.
CVSS Score
5.0
EPSS Score
0.004
Published
2016-10-25
CVE-2016-5544
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Kernel/X86.
CVSS Score
7.8
EPSS Score
0.004
Published
2016-10-25
CVE-2016-5487
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors.
CVSS Score
5.3
EPSS Score
0.004
Published
2016-10-25
CVE-2016-5480
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect integrity via vectors related to Bash.
CVSS Score
2.8
EPSS Score
0.004
Published
2016-10-25
CVE-2016-2776
buffer.c in named in ISC BIND 9 before 9.9.9-P3, 9.10.x before 9.10.4-P3, and 9.11.x before 9.11.0rc3 does not properly construct responses, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted query.
CVSS Score
7.5
EPSS Score
0.895
Published
2016-09-28
CVE-2016-5844
Integer overflow in the ISO parser in libarchive before 3.2.1 allows remote attackers to cause a denial of service (application crash) via a crafted ISO file.
CVSS Score
6.5
EPSS Score
0.041
Published
2016-09-21
CVE-2016-6302
The tls_decrypt_ticket function in ssl/t1_lib.c in OpenSSL before 1.1.0 does not consider the HMAC size during validation of the ticket length, which allows remote attackers to cause a denial of service via a ticket that is too short.
CVSS Score
7.5
EPSS Score
0.264
Published
2016-09-16
CVE-2016-5358
epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the packet-header data type, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
CVSS Score
5.9
EPSS Score
0.023
Published
2016-08-07
CVE-2016-5357
wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
CVSS Score
5.9
EPSS Score
0.025
Published
2016-08-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved