Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad...
8.1AI Score
0.006EPSS
Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose...
8AI Score
0.019EPSS
The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable...
7.5AI Score
0.0004EPSS
Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse...
6.9AI Score
0.0004EPSS
Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink...
7AI Score
0.0004EPSS
7.6AI Score
0.0004EPSS
7AI Score
0.008EPSS
6.8AI Score
0.003EPSS
6.8AI Score
0.008EPSS
Buffer overflow in uum program for Canna input system allows local users to gain root...
7.7AI Score
0.0004EPSS
Buffer overflow in canuum program for Canna input system allows local users to gain root...
7.7AI Score
0.0004EPSS
Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to...
7.2AI Score
0.002EPSS
The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink...
7.2AI Score
0.0004EPSS
Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m...
7.7AI Score
0.0004EPSS
The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink...
8AI Score
0.0004EPSS
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user...
7.6AI Score
0.0004EPSS
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute...
7.8AI Score
0.011EPSS
Buffer overflow in Solaris libc, ufsrestore, and rcp via LC_MESSAGES environmental...
7.7AI Score
0.0004EPSS
DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default...
7.5AI Score
0.015EPSS
sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink...
7AI Score
0.0005EPSS
The BSD profil system call allows a local user to modify the internal data space of a program via profiling and...
7.2AI Score
0.0004EPSS
7AI Score
0.007EPSS
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password...
7.3AI Score
0.0004EPSS
rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in...
6.9AI Score
0.013EPSS
7.6AI Score
0.0004EPSS
In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary...
7.7AI Score
0.0004EPSS
Buffer overflow in Solaris lpstat via class argument allows local users to gain root...
7.6AI Score
0.0004EPSS
7.1AI Score
0.0004EPSS
7.3AI Score
0.035EPSS
7.3AI Score
0.0004EPSS
7.3AI Score
0.0004EPSS
Buffer overflow in Solaris kcms_configure command allows local users to gain root...
7.7AI Score
0.0004EPSS
7.1AI Score
0.007EPSS
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any...
7.1AI Score
0.003EPSS
A hidden SNMP community string in HP OpenView allows remote attackers to modify MIB tables and obtain sensitive...
6.6AI Score
0.027EPSS
In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system...
7.8AI Score
0.006EPSS
SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP...
8.2AI Score
0.006EPSS
Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute...
7.9AI Score
0.005EPSS
Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root...
7.7AI Score
0.0004EPSS
Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is...
7.1AI Score
0.005EPSS
7.2AI Score
0.013EPSS
7.3AI Score
0.05EPSS
7AI Score
0.14EPSS
7.7AI Score
0.0004EPSS
7.5AI Score
0.0005EPSS
Solaris 2.6 HW3/98 installs admintool with world-writable permissions, which allows local users to gain privileges by replacing it with a Trojan horse...
7.3AI Score
0.0004EPSS
7.3AI Score
0.09EPSS
7.7AI Score
0.0004EPSS
7.5AI Score
0.044EPSS
ndd in Solaris 2.6 allows local users to cause a denial of service by modifying certain TCP/IP...
7AI Score
0.0004EPSS