15 matches found
CVE-1999-0296
Solaris volrmmount program allows attackers to read any file...
CVE-1999-0410
The cancel command in Solaris 2.6 i386 has a buffer overflow that allows local users to obtain root access...
CVE-1999-0295
Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges...
EUVD-1999-0135
Malware in sbrugna...
EUVD-2007-0395
Malware in sbrugna...
EUVD-1999-1413
Malware in sbrugna...
EUVD-1999-1099
Malware in sbrugna...
Solaris SADMIND Exploitation
The exploitation method is different from the iDefense advisory, this code only requires a single UDP packet to the sadmind service to execute commands. ================================================== $ wget http://www.metasploit.com/tools/rootdown.pl /dev/null 2&1 $ chmod 755 rootdown.pl $...
Solaris 2.6/7/8 - 'TTYPROMPT in.telnet' Remote Authentication Bypass
Solaris TTYPROMPT Security Vulnerability Telnet This vulnerability is very simple to exploit, since it does not require any code to be compiled by an attacker. The vulnerability only requires the attacker to simply define the environment variable TTYPROMPT to a 6-character string, inside telnet...
CVE-2002-1590
The Web-Based Enterprise Management WBEM packages 1 SUNWwbdoc, 2 SUNWwbcou, 3 SUNWwbdev and 4 SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with world or group write permissions, which allows local users to gain root privileges or cause a denial of service...
CVE-2002-0265
Sawmill for Solaris 6.2.14 and earlier creates the AdminPassword file with world-writable permissions, which allows local users to gain privileges by modifying the file...
Solaris 2.62.67.08 whodo - Local Buffer Overflow
Solaris 2.62.67.08 whodo - Local Buffer Overflow // source: https://www.securityfocus.com/bid/2935/info The 'whodo' utility shipped with Sun Microsystems' Solaris provides a listing of users online and their activities. It is installed setuid root because it reads from the 'utmp' log as well as...
CVE-1999-0136
Kodak Color Management System KCMS on Solaris allows a local user to write to arbitrary files and gain root access...
CVE-1999-0334
In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access...
CVE-1999-0410
The cancel command in Solaris 2.6 i386 has a buffer overflow that allows local users to obtain root access...