Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as...
7.5AI Score
0.001EPSS
NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch...
7.4AI Score
0.001EPSS
7.4AI Score
0.013EPSS
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service...
7.7AI Score
0.001EPSS
The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the portmapper despite export...
6.8AI Score
0.025EPSS
SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same...
7.4AI Score
0.001EPSS
In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file...
6.7AI Score
0.0004EPSS
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator)...
7.7AI Score
0.001EPSS
The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid root programs (1) makeinstall or (2)...
7.5AI Score
0.0004EPSS
Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root...
7.3AI Score
0.0005EPSS
Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root...
7.3AI Score
0.0005EPSS
Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line...
7.4AI Score
0.001EPSS
rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system...
7.2AI Score
0.003EPSS
TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect console output and input, which could allow a local user to gain...
7.4AI Score
0.001EPSS
6.8AI Score
0.558EPSS
Vulnerability in SMI Sendmail 4.0 and earlier, on SunOS up to 4.0.3, allows remote attackers to access user...
7.4AI Score
0.002EPSS
Vulnerability in rcp on SunOS 4.0.x allows remote attackers from trusted hosts to execute arbitrary commands as root, possibly related to the configuration of the nobody...
8.5AI Score
0.003EPSS
7.3AI Score
0.001EPSS