Lucene search
K

15 matches found

NVD
NVD
added 2026/03/05 6:16 a.m.4 views

CVE-2026-22454

Deserialization of Untrusted Data vulnerability in ThemeREX Solaris solaris allows Object Injection.This issue affects Solaris: from n/a through = 2.5...

9.8CVSS0.0051EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Solaris 2.5/2.6/7.0/8 kcms_configure KCMS_PROFILES Buffer Overflow Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/2605/info The Kodak Color Management System configuration tool 'kcmsconfigure' is vulnerable to a buffer overflow that could yield root privileges to an attacker. The bug exists in the KCMSPROFILES environment variable...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/10/28 12:0 a.m.24 views

Solaris 2.5 / 2.5.1 getgrnam() Local Overflow Exploit

No description provided by source. include stdio.h include sys/types.h / getgrnam function overflow. works against Solaris 2.5/2.5.1 SPARC default offset should work. Pablo Sor, Buenos Aires, Argentina. [email protected] / uchar shell =...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2006/10/28 12:0 a.m.24 views

Solaris 2.4 passwd, yppasswd, and nispasswd Overflow Exploits

No description provided by source. ---------------------------- file newpass.c ------------------------------- include stdio.h include syslog.h define hiddenpasswd "/bin/hpasswd" /change here .../ define MAXLENGTH 32 void mainint argc, char argv int i; char args10; ifargc 10 args0=hiddenpasswd;...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.25 views

Kcms Profile Server

The Kodak Color Management System service is running. The KCMS service on Solaris 2.5 could allow a local user to write to arbitrary files and gain root access. This warning may be a false positive since the presence of the bug has not been tested. Patches: 107337-02 SunOS 5.7 has been released a...

4.6CVSS6.8AI score0.01253EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.29 views

Kcms Profile Server

The Kodak Color Management System service is running. The KCMS service on Solaris 2.5 could allow a local user to write to arbitrary files and gain root access. Patches: 107337-02 SunOS 5.7 has been released and the following should be out soon: 111400-01 SunOS 5.8, 111401-01 SunOS 5.8x86...

4.6CVSS6.8AI score0.01253EPSS
Exploits1References3
CVE
CVE
added 2002/03/07 5:0 a.m.72 views

CVE-2002-0089

The CVE-2002-0089 issue affects Sun Solaris admintool across Solaris 2.5 through 8 (SPARC/x86). The vulnerability is a buffer overflow in admintool triggered by long strings in two input vectors: (1) the -d command line option and (2) the PRODVERS variable in the .cdtoc file. This can allow a loc...

7.2CVSS6.9AI score0.004EPSS
Exploits0References7Affected Software2
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.15 views

CVE-1999-1026

aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file...

6.6AI score0.00856EPSS
Exploits1References2
CVE
CVE
added 2001/09/12 4:0 a.m.41 views

CVE-1999-1026

CVE-1999-1026 affects aspppd on Solaris 2.5 x86. The vulnerability arises from a symlink attack on the temporary file /tmp/.asppp.fifo, enabling local users to modify arbitrary files and escalate to root privileges. Exploitation details are not provided beyond the described symlink surface, and t...

7.2CVSS7.4AI score0.00856EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.15 views

CVE-1999-1295

Transarc DCE Distributed File System DFS 1.1 for Solaris 2.4 and 2.5 does not properly initialize the grouplist for users who belong to a large number of groups, which could allow those users to gain access to resources that are protected by DFS...

6.8AI score0.00347EPSS
Exploits0References2
CVE
CVE
added 2001/09/12 4:0 a.m.52 views

CVE-1999-1158

CVE-1999-1158 describes a buffer overflow in Solaris PAM (versions 2.5.1/2.5) and unix_scheme (Solaris 2.3/2.4) that lets local users gain root privileges through programs that use these modules (e.g., passwd, yppasswd, nispasswd). The root cause is a buffer overflow in the affected modules, enab...

7.2CVSS7.9AI score0.00837EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2001/01/19 12:0 a.m.29 views

Solaris /usr/bin/cu Vulnerability

Description The /usr/bin/cu command contains a buffer overflow, the problem occurs when it copy his own name argv0 to an internal variable without checking out its lenght and this causes the overflow. Vulnerable Versions Sun Solaris 2.4 Sun Solaris 2.5 Sun Solaris 2.5.1 Sun Solaris 2.6 Sun Solari...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2001/01/13 12:0 a.m.41 views

Solaris 2.5/2.5.1 - 'getgrnam()' Local Overflow

include include / getgrnam function overflow. works against Solaris 2.5/2.5.1 SPARC default offset should work. Pablo Sor, Buenos Aires, Argentina. [email protected] / uchar shell = "\x82\x10\x20\xca\xa6\x1c\xc0\x13\x90\x0c\xc0\x13\x92\x0c\xc0\x13"...

7AI score
Exploits0
securityvulns
securityvulns
added 2001/01/05 12:0 a.m.30 views

Old getgrnam() Solaris 2.5 vulnerability

Hi Old versions of Solaris, 2.5/2.5.1 without patch contain an exploitable buffer overflow in getgrnam libc function. Sorry if this is already know, it seems an old problem but i failed searching it in the bugtraq archives. This vulnerability may be used in newgrp command. bye Pablo Sor...

1AI score
Exploits0
Packet Storm
Packet Storm
added 1999/09/21 12:0 a.m.33 views

rpc_exploit.txt

Subject: Re: Exploit of rpc.cmsd To: [email protected] Hi, everybody! The calendar manager rpc.cmsd on Solaris 2.5 and 2.5.1 is vulnerable to a buffer overflow attack... ... Shall we have a look? Let's 'cmlookup -c [email protected]' and simultaneously 'truss -p on 2.6.host:...

7.4AI score
Exploits0
Rows per page
Query Builder