CVE-2001-0426

Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable...

SSH1 may generate weak passphrase when using Secure RPC

Overview The secure-RPC feature of the SSH1 client in Solaris sometimes encrypts the SSH private key file with a weak passphrase, which can be determined by an attacker and used to recover the SSH private keys. Other versions of the SSH client running on non-Solaris platforms are not affected by...

Solaris 2.6 - FTP Core Dump Shadow Password Recovery

source: https://www.securityfocus.com/bid/2601/info Solaris is the variant of the UNIX Operating System distributed by Sun Microsystems. Solaris is designed as a scalable operating system for the Intel x86 and Sun Sparc platforms, and operates on machines varying from desktop to enterprise server...

Solaris 2.6 - FTP Core Dump Shadow Password Recovery

Solaris 2.6 - FTP Core Dump Shadow Password Recovery source: https://www.securityfocus.com/bid/2601/info Solaris is the variant of the UNIX Operating System distributed by Sun Microsystems. Solaris is designed as a scalable operating system for the Intel x86 and Sun Sparc platforms, and operates ...

Solaris 2.6/7.0 - IN.FTPD CWD 'Username' Enumeration

source: https://www.securityfocus.com/bid/2564/info Solaris is the variant of the UNIX Operating System distributed by Sun Microsystems. Solaris is a versatile operating system designed for use with machines as small as desktop systems and as large as enterprise systems. A problem with the ftp...

Дырка в tip под Solaris (buffer overflow)

переполнение буфера в suid uucp программе...

CVE-2001-0190

Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name arg0...

Solaris 7/8 - ximp40 Library Buffer Overflow

// source: https://www.securityfocus.com/bid/2322/info Solaris is a variant of the UNIX Operating System, maintained and distributed by Sun Microsystems. It is freely available, with source code available. A problem in the ximp40 library packaged with Openwin could allow a user to gain elevated...

FS-071000-5-JWS

Foundstone, Inc. http://www.foundstone.com "Securing the Dot Com World" Security Advisory Sun's Java Web Server ---------------------------------------------------------------------- FS Advisory ID: FS-071000-5-JWS Release Date: July 10, 2000 Product: Java Web Server Vendor: Sun Microsystems...

Solaris 2.67.0 - lp -d Option Buffer Overflow

Solaris 2.67.0 - lp -d Option Buffer Overflow // source: https://www.securityfocus.com/bid/1143/info A buffer overrun has been discovered in the lp program, as included with Sun's Solaris 7 operating system. By passing well crafted, machine executable code of sufficient length to the -d option of...

CVE-1999-0786

The dynamic linker in Solaris allows a local user to create arbitrary files via the LDPROFILE environmental variable and a symlink attack...

solaris.snmpd.txt

Date: Mon, 2 Nov 1998 17:47:32 -0500 From: X-Force To: [email protected] Subject: ISS Security Advisory: Hidden community string in SNMP implementation -----BEGIN PGP SIGNED MESSAGE----- ISS Security Advisory November 2nd, 1998 Hidden community string in SNMP implementation Synopsis: Internet...

Solaris 2.5.1 - 'chkey' Local Privilege Escalation

/ source: https://www.securityfocus.com/bid/207/info The chkey program is used to change a users secure RPC Diffie-Hellman public key and secret key pair. A buffer overflow condition has been found in the chkey program. Since chkey has setuid root permissions, an unauthorized user may be able to...