Main Vulnerability Database Vulnerabilities #VU40693

#VU40693 Input validation error in Oracle Solaris - CVE-2015-2631

Published: July 16, 2015 / Updated: August 9, 2020

Vulnerability identifier: #VU40693

Vulnerability risk: High

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2015-2631

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Oracle Solaris

Software vendor:
Oracle

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

Unspecified vulnerability in Oracle Sun Solaris 10 and 11.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to rmformat.

Remediation

Install update from vendor's website.

External links

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.securityfocus.com/bid/75855
http://www.securitytracker.com/id/1032914

#VU40693 Input validation error in Oracle Solaris - CVE-2015-2631

Description

Remediation

External links

Please verify you're human