National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/o:sun:sunos:-
There are 169 matching records.
Displaying matches 161 through 169.
Vuln ID Summary CVSS Severity
CVE-1999-0241

Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm.

Published: November 01, 1995; 12:00:00 AM -05:00
    V2: 10.0 HIGH
CVE-1999-0120

Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root.

Published: March 21, 1994; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-1137

The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.

Published: October 01, 1993; 12:00:00 AM -04:00
    V2: 2.1 LOW
CVE-1999-1318

/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs.

Published: September 17, 1993; 12:00:00 AM -04:00
    V2: 7.2 HIGH
CVE-1999-1142

SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.

Published: May 27, 1992; 12:00:00 AM -04:00
    V2: 7.2 HIGH
CVE-1999-1211

Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges.

Published: March 27, 1991; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-1438

Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.

Published: February 22, 1991; 12:00:00 AM -05:00
    V2: 7.2 HIGH
CVE-1999-1258

rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information.

Published: January 15, 1991; 12:00:00 AM -05:00
    V2: 5.0 MEDIUM
CVE-1999-1122

Vulnerability in restore in SunOS 4.0.3 and earlier allows local users to gain privileges.

Published: July 26, 1989; 12:00:00 AM -04:00
    V2: 4.6 MEDIUM