Detections
Analytics

CVE-2007-3471

high

Description

Buffer overflow in the dtsession Common Desktop Environment (CDE) Session Manager in Sun Solaris 8, 9, and 10 allows local users to execute arbitrary code via unspecified vectors.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2015

https://exchange.xforce.ibmcloud.com/vulnerabilities/35127

http://www.vupen.com/english/advisories/2007/2369

http://www.securityfocus.com/bid/24687

http://support.avaya.com/elmodocs2/security/ASA-2007-310.htm

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102954-1

http://secunia.com/advisories/26136

http://secunia.com/advisories/25876

http://osvdb.org/36608

Details

Source: Mitre, NVD

Published: 2007-06-28

Updated: 2025-04-09

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00079