26 matches found
CVE-1999-1402
The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket...
CVE-2002-0089
Buffer overflow in admintool in Solaris 2.5 through 8 allows local users to gain root privileges via long arguments to 1 the -d command line option, or 2 the PRODVERS argument in the .cdtoc file...
Solaris 2/7/8/9 cachefsd - Remote Heap Overflow
// source: https://www.securityfocus.com/bid/4674/info A remotely exploitable buffer overflow condition has been reported in cachefsd. The overflow occurs in the heap and is reportedly exploitable as valid malloc chunk structures are overwritten. Successful attacks may result in remote attackers...
Advisory CA-2001-05
-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2001-05 Exploitation of snmpXdmid Original release date: March 30, 2001 Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Any machine running Solaris 2.6, 7, or 8 with snmpXdmid installed and...
Bug in SSH1 secure-RPC support can expose users' private keys
Hello all, There is a bug in SSH-1.2.30 involving Secure RPC. The patch for this is available at http://www.ssh.com/patches.html. The explanation and bug was submitted by Richard Silverman [email protected], and his explanation of the bug is below. The SSH1 protocol is not formally supported by SSH...
Caldera OpenUnix 8.0/UnixWare 7.1.1 / HP HP-UX 11.0 / Solaris 7.0 / SunOS 4.1.4 - rpc.cmsd Buffer Overflow (2)
// source: https://www.securityfocus.com/bid/524/info There is a remotely exploitable buffer overflow vulnerability in rpc.cmsd which ships with Sun's Solaris and HP-UX versions 10.20, 10.30 and 11.0 operating systems. The consequence is a remote root compromise. / Unixware 7.x rpc.cmsd exploit b...