Search Results (Refine Search)
- CPE Product Version: cpe:/o:sun:sunos:-
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-1999-0055 |
Buffer overflows in Sun libnsl allow root access. Published: May 14, 1998; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-0009 |
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. Published: April 08, 1998; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-1999-0190 |
Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access. Published: April 08, 1998; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-0003 |
Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd). Published: April 01, 1998; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-1999-0296 |
Solaris volrmmount program allows attackers to read any file. Published: February 01, 1998; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-0125 |
Buffer overflow in SGI IRIX mailx program. Published: January 25, 1998; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 4.6 MEDIUM |
CVE-1999-0513 |
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service. Published: January 05, 1998; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-1999-0097 |
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). Published: October 29, 1997; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-1999-0024 |
DNS cache poisoning via BIND, by predictable query IDs. Published: August 13, 1997; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-1999-1192 |
Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. Published: June 24, 1997; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-1191 |
Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. Published: May 19, 1997; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-1402 |
The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket. Published: May 17, 1997; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 2.1 LOW |
CVE-1999-0165 |
NFS cache poisoning. Published: March 01, 1997; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-1999-0369 |
The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access. Published: February 01, 1997; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-0023 |
Local user gains root privileges via buffer overflow in rdist, via lookup() function. Published: July 24, 1996; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-0241 |
Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm. Published: November 01, 1995; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-1999-0120 |
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root. Published: March 21, 1994; 12:00:00 AM -0500 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-1137 |
The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone. Published: October 01, 1993; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 2.1 LOW |
CVE-1999-1318 |
/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs. Published: September 17, 1993; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |
CVE-1999-1142 |
SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user. Published: May 27, 1992; 12:00:00 AM -0400 |
V3.x:(not available) V2.0: 7.2 HIGH |