Vigil@nce - Oracle Solaris: vulnerabilities of October 2016
December 2016 by Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of Oracle Solaris.
– Impacted products: Solaris.
– Severity: 2/4.
– Creation date: 19/10/2016.
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in Oracle Solaris.
An attacker can use a vulnerability via Kernel/X86, in order to
obtain information, to alter information, or to trigger a denial
of service. [severity:2/4; CVE-2016-5544]
An attacker can use a vulnerability via Kernel Zones, in order to
alter information, or to trigger a denial of service.
[severity:2/4; CVE-2016-5606]
An attacker can use a vulnerability via Kernel Zones, in order to
trigger a denial of service. [severity:2/4; CVE-2016-5576]
An attacker can use a vulnerability via Installation, in order to
obtain information. [severity:2/4; CVE-2016-5566]
An attacker can use a vulnerability via Files, in order to obtain
information, to alter information, or to trigger a denial of
service. [severity:2/4; CVE-2016-5487]
An attacker can use a vulnerability via Filesystem, in order to
trigger a denial of service. [severity:2/4; CVE-2016-5553]
An attacker can use a vulnerability via Kernel, in order to alter
information. [severity:2/4; CVE-2016-5559]
An attacker can use a vulnerability via Lynx, in order to trigger
a denial of service. [severity:1/4; CVE-2016-5615]
An attacker can use a vulnerability via IKE, in order to trigger a
denial of service. [severity:1/4; CVE-2016-5561]
An attacker can use a vulnerability via Bash, in order to alter
information. [severity:1/4; CVE-2016-5480]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Oracle-Solaris-vulnerabilities-of-October-2016-20905