Solaris@2.5 Security Vulnerabilities and Issues — Page 2 of Solaris@2.5 CVE List

Lucene search

SunSolaris2.5

56 matches found

CVE•added 2000/02/04 5:0 a.m.•38 views

CVE-2000-0055

Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option.

7.2CVSS7.3AI score0.00063EPSS

CVE•added 2002/03/09 5:0 a.m.•37 views

CVE-2001-0565

Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option.

4.6CVSS6.9AI score0.00175EPSS

CVE•added 2000/04/18 4:0 a.m.•35 views

CVE-1999-0676

sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack.

4.6CVSS6.6AI score0.00073EPSS

CVE•added 2002/03/09 5:0 a.m.•32 views

CVE-1999-1402

The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket.

2.1CVSS7.3AI score0.00115EPSS

CVE•added 2002/03/09 5:0 a.m.•32 views

CVE-1999-1432

Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restori...

7.5CVSS7.1AI score0.03047EPSS

CVE•added 2001/09/12 4:0 a.m.•29 views

CVE-1999-1026

aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file.

7.2CVSS7.4AI score0.00123EPSS

Total number of security vulnerabilities56