Sunos Security Vulnerabilities

CVE-1999-0773

Buffer overflow in Solaris lpset program allows local users to gain root...

CVE-1999-0806

Buffer overflow in Solaris dtprintinfo...

CVE-1999-0417

64 bit Solaris 7 procfs allows local users to perform a denial of...

CVE-1999-1371

Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name...

CVE-1999-0410

The cancel command in Solaris 2.6 (i386) has a buffer overflow that allows local users to obtain root...

CVE-1999-0223

Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS...

CVE-1999-0370

In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary...

CVE-1999-0952

Buffer overflow in Solaris lpstat via class argument allows local users to gain root...

CVE-1999-0442

Solaris ff.core allows local users to modify...

CVE-1999-0188

The passwd command in Solaris can be subjected to a denial of...

CVE-1999-0139

Buffer overflow in Solaris x86 mkcookie allows local users to obtain root...

CVE-1999-0057

Vacation program allows command execution by remote users through a sendmail...

CVE-1999-1025

CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any...

CVE-1999-0056

Buffer overflow in Sun's ping program can give root access to local...

CVE-1999-0302

SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP...

CVE-1999-0065

Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute...

CVE-1999-0339

Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root...

CVE-1999-1432

Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is...

CVE-1999-0263

Solaris SUNWadmap can be exploited to obtain root...

CVE-1999-0213

libnsl in Solaris allowed an attacker to perform a denial of service of...

CVE-1999-1297

cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN...

CVE-1999-0797

NIS finger allows an attacker to conduct a denial of service via a large number of finger requests, resulting in a large number of NIS...

CVE-1999-0054

Sun's ftpd daemon can be subjected to a denial of...

CVE-1999-0008

Buffer overflow in NIS+, in Sun's rpc.nisd...

CVE-1999-0303

Buffer overflow in BNU UUCP daemon (uucpd) through long...

CVE-1999-0055

Buffer overflows in Sun libnsl allow root...

CVE-1999-0212

Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the...

CVE-1999-0069

Solaris ufsrestore buffer...

CVE-1999-0009

Inverse query buffer overflow in BIND 4.9 and BIND 8...

CVE-1999-0011

Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone...

CVE-1999-0010

Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS...

CVE-1999-0190

Solaris rpcbind can be exploited to overwrite arbitrary files and gain root...

CVE-1999-0003

Execute commands as root via buffer overflow in Tooltalk database server...

CVE-1999-0502

A Unix account has a default, null, blank, or missing...

CVE-1999-0320

SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary...

CVE-1999-0795

The NIS+ rpc.nisd server allows remote attackers to execute certain RPC calls without authentication to obtain system information, disable logging, or modify...

CVE-1999-0296

Solaris volrmmount program allows attackers to read any...

CVE-1999-0125

Buffer overflow in SGI IRIX mailx...

CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of...

CVE-1999-0273

Denial of service through Solaris 2.5.1 telnet by sending ^D...

CVE-1999-0015

Teardrop IP denial of...

CVE-1999-0104

A later variation on the Teardrop IP denial of service attack, a.k.a....

CVE-1999-0017

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP...

CVE-1999-0018

Buffer overflow in statd allows root...

CVE-1999-0016

Land IP denial of...

CVE-1999-0210

Automount daemon automountd allows local or remote users to gain privileges via shell...

CVE-1999-0097

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe...

CVE-1999-0185

In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command...

CVE-1999-0300

nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+...

CVE-1999-0295

Solaris sysdef command allows local users to read kernel memory, potentially leading to root...