Vigil@nce - Oracle Solaris: several vulnerabilities of October 2015
December 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of Oracle Solaris.
Impacted products: Solaris.
Severity: 2/4.
Creation date: 21/10/2015.
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in Oracle Solaris.
An attacker can use a vulnerability of Utility/Security, in order
to obtain information, to alter information, or to trigger a
denial of service. [severity:2/4; CVE-2015-4837]
An attacker can use a vulnerability of Kernel Zones virtualized
NIC driver, in order to obtain information, to alter information,
or to trigger a denial of service. [severity:2/4; CVE-2015-4817]
An attacker can use a vulnerability of Solaris Kernel Zones, in
order to obtain information, to alter information, or to trigger a
denial of service. [severity:2/4; CVE-2015-4820]
An attacker can use a vulnerability of INETD, in order to trigger
a denial of service. [severity:2/4; CVE-1999-0377]
An attacker can use a vulnerability of Kernel, in order to trigger
a denial of service. [severity:2/4; CVE-2015-4869]
An attacker can use a vulnerability of Solaris Kernel Zones, in
order to trigger a denial of service. [severity:2/4; CVE-2015-4831]
An attacker can use a vulnerability of NSCD, in order to obtain
information, to alter information, or to trigger a denial of
service. [severity:2/4; CVE-2015-4891]
An attacker can use a vulnerability of Solaris Kernel Zones, in
order to obtain information, to alter information, or to trigger a
denial of service. [severity:2/4; CVE-2015-4907]
An attacker can use a vulnerability of Gzip, in order to obtain
information, to alter information, or to trigger a denial of
service. [severity:2/4; CVE-2015-2642]
An attacker can use a vulnerability of Utility/Zones, in order to
obtain information, to alter information, or to trigger a denial
of service. [severity:1/4; CVE-2015-4834]
An attacker can use a vulnerability of Solaris Kernel Zones, in
order to obtain information. [severity:1/4; CVE-2015-4801]
An attacker can use a vulnerability of Solaris Kernel Zones, in
order to trigger a denial of service. [severity:1/4; CVE-2015-4822]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Oracle-Solaris-several-vulnerabilities-of-October-2015-18150