Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Sunos Security Vulnerabilities

cve
cve

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

7.8CVSS

7.4AI Score

0.001EPSS

1999-09-29 04:00 AM
42
cve
cve

CVE-1999-0038

Buffer overflow in xlock program allows local users to execute commands as root.

8.4CVSS

7.9AI Score

0.0004EPSS

1999-09-29 04:00 AM
48
cve
cve

CVE-1999-0069

Solaris ufsrestore buffer overflow.

8.4CVSS

7.6AI Score

0.0005EPSS

1999-09-29 04:00 AM
37
cve
cve

CVE-1999-0223

Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry.

7AI Score

0.0004EPSS

2001-05-07 04:00 AM
36
cve
cve

CVE-1999-0370

In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files.

7.3AI Score

0.0004EPSS

2000-02-04 05:00 AM
28
cve
cve

CVE-1999-0410

The cancel command in Solaris 2.6 (i386) has a buffer overflow that allows local users to obtain root access.

7.2AI Score

0.0004EPSS

1999-09-29 04:00 AM
30
cve
cve

CVE-1999-0417

64 bit Solaris 7 procfs allows local users to perform a denial of service.

6.7AI Score

0.0004EPSS

1999-09-29 04:00 AM
33
cve
cve

CVE-1999-0442

Solaris ff.core allows local users to modify files.

6.7AI Score

0.0004EPSS

1999-09-29 04:00 AM
28
cve
cve

CVE-1999-0493

rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.

6.7AI Score

0.013EPSS

2000-06-02 04:00 AM
38
cve
cve

CVE-1999-0674

The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve.

6.7AI Score

0.0004EPSS

2000-01-04 05:00 AM
32
cve
cve

CVE-1999-0676

sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack.

6.6AI Score

0.0005EPSS

2000-04-18 04:00 AM
20
cve
cve

CVE-1999-0687

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

7.3AI Score

0.011EPSS

2000-01-04 05:00 AM
41
cve
cve

CVE-1999-0689

The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.

7.6AI Score

0.0004EPSS

2000-01-04 05:00 AM
28
cve
cve

CVE-1999-0691

Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.

7.2AI Score

0.0004EPSS

2000-01-04 05:00 AM
31
cve
cve

CVE-1999-0696

Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).

6.9AI Score

0.007EPSS

2000-06-02 04:00 AM
39
cve
cve

CVE-1999-0767

Buffer overflow in Solaris libc, ufsrestore, and rcp via LC_MESSAGES environmental variable.

7.3AI Score

0.0004EPSS

2000-02-04 05:00 AM
38
cve
cve

CVE-1999-0773

Buffer overflow in Solaris lpset program allows local users to gain root access.

7.2AI Score

0.0004EPSS

2000-04-18 04:00 AM
23
cve
cve

CVE-1999-0786

The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.

6.8AI Score

0.0004EPSS

2000-03-22 05:00 AM
27
cve
cve

CVE-1999-0806

Buffer overflow in Solaris dtprintinfo program.

7.3AI Score

0.0004EPSS

2000-03-22 05:00 AM
28
cve
cve

CVE-1999-0818

Buffer overflow in Solaris kcms_configure via a long NETPATH environmental variable.

7.2AI Score

0.0004EPSS

2000-02-04 05:00 AM
40
cve
cve

CVE-1999-0833

Buffer overflow in BIND 8.2 via NXT records.

6.9AI Score

0.008EPSS

2000-01-04 05:00 AM
39
cve
cve

CVE-1999-0835

Denial of service in BIND named via malformed SIG records.

6.6AI Score

0.019EPSS

2000-01-04 05:00 AM
28
cve
cve

CVE-1999-0837

Denial of service in BIND by improperly closing TCP sessions via so_linger.

6.6AI Score

0.008EPSS

2000-01-04 05:00 AM
27
cve
cve

CVE-1999-0840

Buffer overflow in CDE dtmail and dtmailpr programs allows local users to gain privileges via a long -f option.

7.2AI Score

0.0004EPSS

2000-02-04 05:00 AM
28
cve
cve

CVE-1999-0841

Buffer overflow in CDE mailtool allows local users to gain root privileges via a long MIME Content-Type.

7.2AI Score

0.0004EPSS

2000-02-04 05:00 AM
29
cve
cve

CVE-1999-0848

Denial of service in BIND named via consuming more than "fdmax" file descriptors.

6.6AI Score

0.003EPSS

2000-01-04 05:00 AM
29
cve
cve

CVE-1999-0851

Denial of service in BIND named via naptr.

6.6AI Score

0.0004EPSS

2000-01-04 05:00 AM
33
cve
cve

CVE-1999-0859

Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse properly.

6.6AI Score

0.0004EPSS

2000-06-02 04:00 AM
29
cve
cve

CVE-1999-0860

Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack.

6.6AI Score

0.0004EPSS

2000-02-04 05:00 AM
26
cve
cve

CVE-1999-0875

DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes.

7.1AI Score

0.015EPSS

2000-01-18 05:00 AM
33
cve
cve

CVE-1999-0908

Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_enter.

6.8AI Score

0.002EPSS

2000-03-22 05:00 AM
30
cve
cve

CVE-1999-0948

Buffer overflow in uum program for Canna input system allows local users to gain root privileges.

7.3AI Score

0.0004EPSS

2000-02-04 05:00 AM
28
cve
cve

CVE-1999-0949

Buffer overflow in canuum program for Canna input system allows local users to gain root privileges.

7.3AI Score

0.0004EPSS

2000-02-04 05:00 AM
32
cve
cve

CVE-1999-0952

Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.

7.2AI Score

0.0004EPSS

2000-02-04 05:00 AM
25
cve
cve

CVE-1999-0973

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.

7.6AI Score

0.019EPSS

2000-01-04 05:00 AM
28
cve
cve

CVE-1999-0974

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.

7.7AI Score

0.006EPSS

2000-01-04 05:00 AM
32
cve
cve

CVE-1999-0977

Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request.

7.2AI Score

0.014EPSS

2000-01-04 05:00 AM
48
cve
cve

CVE-1999-1014

Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument.

7.3AI Score

0.0004EPSS

2002-03-09 05:00 AM
40
cve
cve

CVE-1999-1023

useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (expiration date) argument, which could allow users to login after their accounts have expired.

6.9AI Score

0.0005EPSS

2001-09-12 04:00 AM
26
cve
cve

CVE-1999-1102

lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times.

6.8AI Score

0.0004EPSS

2002-03-09 05:00 AM
35
cve
cve

CVE-1999-1371

Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument.

7.2AI Score

0.0004EPSS

2001-09-12 04:00 AM
24
cve
cve

CVE-1999-1584

Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586.

6.6AI Score

0.001EPSS

2005-08-30 04:00 AM
30
cve
cve

CVE-1999-1585

The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges.

6.9AI Score

0.001EPSS

2005-08-30 04:00 AM
36
cve
cve

CVE-1999-1586

loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584.

6.5AI Score

0.001EPSS

2005-08-30 04:00 AM
39
cve
cve

CVE-1999-1587

/usr/ucb/ps in Sun Microsystems Solaris 8 and 9, and certain earlier releases, allows local users to view the environment variables and values of arbitrary processes via the -e option.

6AI Score

0.0004EPSS

2006-03-29 01:00 AM
26
cve
cve

CVE-2000-0030

Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database.

6.7AI Score

0.05EPSS

2000-07-12 04:00 AM
33
cve
cve

CVE-2000-0032

Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.

6.7AI Score

0.005EPSS

2000-07-12 04:00 AM
41
cve
cve

CVE-2000-0055

Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option.

7.3AI Score

0.0004EPSS

2000-02-04 05:00 AM
28
cve
cve

CVE-2000-0118

The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.

6.9AI Score

0.0004EPSS

2000-02-08 05:00 AM
29
cve
cve

CVE-2000-0316

Buffer overflow in Solaris 7 lp allows local users to gain root privileges via a long -d option.

6.8AI Score

0.0004EPSS

2000-07-12 04:00 AM
28
Total number of security vulnerabilities455