CyberSec.Space Logo
Back to CVE Browser

CVE-2007-3471

HIGH
7.2
CVSS Severity Score
EPSS Score0.1210%
EPSS Percentile28.16th
PublishedJun 28, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via unspecified vectors.

Affected Platforms (CPE)

πŸ’»
Sun

Solaris

= 8.0
πŸ’»
Sun

Solaris

= 8.0
πŸ’»
Sun

Solaris

= 9.0
πŸ’»
Sun

Solaris

= 9.0
πŸ’»
Sun

Solaris

= 10.0
πŸ’»
Sun

Solaris

= 10.0

References & Advisories

πŸ”— http://osvdb.org/36608
πŸ”— http://secunia.com/advisories/25876
πŸ”— http://secunia.com/advisories/26136
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-26-102954-1
πŸ”— http://support.avaya.com/elmodocs2/security/ASA-2007-310.htm
πŸ”— http://www.securityfocus.com/bid/24687
πŸ”— http://www.vupen.com/english/advisories/2007/2369
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/35127

Related Vulnerabilities

CVE-1999-056810.0

rpc.admind in Solaris is not running in a secure mode.

CVE-1999-097310.0

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is runn...

CVE-2020-1487110.0

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Supported versions tha...

CVE-1999-097410.0

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.