Solaris@2.5.1 Security Vulnerabilities and Issues — Page 2 of Solaris@2.5.1 CVE List

Lucene search

SunSolaris2.5.1

74 matches found

CVE•added 2002/07/03 4:0 a.m.•43 views

CVE-2002-0572

FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standard error), which may then be reused by a called setuid process that intended to ...

7.2CVSS6AI score0.00211EPSS

CVE•added 2000/03/22 5:0 a.m.•42 views

CVE-1999-0786

The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.

4.6CVSS6.8AI score0.00154EPSS

CVE•added 2001/05/07 4:0 a.m.•42 views

CVE-2001-0115

Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter.

7.2CVSS7.8AI score0.0023EPSS

CVE•added 1999/09/29 4:0 a.m.•41 views

CVE-1999-0139

Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access.

7.2CVSS7.3AI score0.00063EPSS

CVE•added 1999/09/29 4:0 a.m.•41 views

CVE-1999-0185

In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.

7.5CVSS7.7AI score0.02697EPSS

CVE•added 1999/09/29 4:0 a.m.•41 views

CVE-1999-0300

nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+ servers.

7.5CVSS7.4AI score0.00489EPSS

CVE•added 2000/01/04 5:0 a.m.•41 views

CVE-1999-0689

The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.

7.2CVSS7.6AI score0.00126EPSS

CVE•added 2000/01/04 5:0 a.m.•41 views

CVE-1999-0973

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.

10CVSS7.6AI score0.03141EPSS

CVE•added 2000/01/04 5:0 a.m.•41 views

CVE-1999-0974

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.

10CVSS7.7AI score0.0244EPSS

CVE•added 2002/03/09 5:0 a.m.•41 views

CVE-1999-1191

Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument.

7.2CVSS7.7AI score0.00196EPSS

CVE•added 2002/02/02 5:0 a.m.•41 views

CVE-2001-1076

Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable.

7.2CVSS7.8AI score0.00209EPSS

CVE•added 1999/09/29 4:0 a.m.•40 views

CVE-1999-0339

Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root access.

7.2CVSS7.7AI score0.00063EPSS

CVE•added 2002/03/09 5:0 a.m.•40 views

CVE-1999-1423

ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping request to a multicast address through the loopback interface, e.g. via ping -i.

2.1CVSS7AI score0.00331EPSS

CVE•added 2000/02/04 5:0 a.m.•39 views

CVE-1999-0860

Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack.

2.1CVSS6.6AI score0.00175EPSS

CVE•added 2005/02/08 5:0 a.m.•39 views

CVE-2002-1586

Solaris 2.5.1 through 9 allows local users to cause a denial of service (kernel panic) by setting the sd_struiowrq variable in the struioget function to null, which triggers a null dereference.

2.1CVSS6.6AI score0.00067EPSS

CVE•added 2005/11/16 9:17 p.m.•39 views

CVE-2002-2203

Unknown vulnerability in the System Serial Console terminal in Solaris 2.5.1, 2.6, and 7 allows local users to monitor keystrokes and possibly steal sensitive information.

4.9CVSS6.6AI score0.0007EPSS

CVE•added 2006/05/05 10:0 p.m.•39 views

CVE-2005-4796

Unspecified vulnerability in the XView library (libxview.so) in Solaris 2.5 to 10 allows local users to corrupt files via unknown vectors related to the handling of the clipboard selection while an XView application exits.

3.6CVSS5.8AI score0.00073EPSS

CVE•added 2000/02/04 5:0 a.m.•38 views

CVE-2000-0055

Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option.

7.2CVSS7.3AI score0.00063EPSS

CVE•added 2005/02/08 5:0 a.m.•38 views

CVE-2003-1079

Unknown vulnerability in UDP RPC for Solaris 2.5.1 through 9 for SPARC, and 2.5.1 through 8 for x86, allows remote attackers to cause a denial of service (memory consumption) via certain arguments in RPC calls that cause large amounts of memory to be allocated.

5CVSS7AI score0.01108EPSS

CVE•added 2002/03/09 5:0 a.m.•37 views

CVE-2001-0565

Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option.

4.6CVSS6.9AI score0.00175EPSS

CVE•added 2000/04/18 4:0 a.m.•35 views

CVE-1999-0676

sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack.

4.6CVSS6.6AI score0.00073EPSS

CVE•added 2002/03/09 5:0 a.m.•32 views

CVE-1999-1402

The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket.

2.1CVSS7.3AI score0.00115EPSS

CVE•added 2002/03/09 5:0 a.m.•32 views

CVE-1999-1432

Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restori...

7.5CVSS7.1AI score0.03047EPSS

CVE•added 2001/09/12 4:0 a.m.•29 views

CVE-1999-1026

aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file.

7.2CVSS7.4AI score0.00123EPSS

Total number of security vulnerabilities74