Solaris@8.0 Security Vulnerabilities and Issues — Solaris@8.0 CVE List

Lucene search

SunSolaris8.0

12 matches found

CVE•added 2006/01/10 7:0 p.m.•54 views

CVE-2004-0780

Buffer overflow in uustat in Sun Solaris 8 and 9 allows local users to execute arbitrary code via a long -S command line argument.

7.2CVSS7.2AI score0.00084EPSS

CVE•added 2006/10/10 4:6 a.m.•54 views

CVE-2006-5215

The Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060317, and Solaris 8 through 10 before 20061006, allows local users to overwrite arbitrary files, or read another user's Xsession errors file, via a symlink attack on a /tmp/xses-$USER file.

2.6CVSS6.1AI score0.00079EPSS

CVE•added 2006/05/05 11:0 p.m.•46 views

CVE-2005-4797

Directory traversal vulnerability in printd line printer daemon (lpd) in Solaris 7 through 10 allows remote attackers to delete arbitrary files via ".." sequences in an "Unlink data file" command.

5CVSS6.6AI score0.73269EPSS

CVE•added 2006/08/23 7:4 p.m.•45 views

CVE-2006-4306

Unspecified vulnerability in Sun Solaris 8 and 9 before 20060821 allows local users to execute arbitrary commands via unspecified vectors, involving the default Role-Based Access Control (RBAC) settings in the "File System Management" profile.

7.2CVSS7AI score0.00056EPSS

CVE•added 2006/09/27 1:7 a.m.•43 views

CVE-2006-5012

Unspecified vulnerability in Sun Solaris 8, 9, and 10 before 20060925 allows local users to cause a denial of service (disable syslog) and prevent security messages from being logged via unspecified vectors.

6.6CVSS6.2AI score0.00053EPSS

CVE•added 2006/09/09 12:4 a.m.•41 views

CVE-2006-4655

Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.

4.6CVSS6.8AI score0.00498EPSS

CVE•added 2006/08/24 1:4 a.m.•40 views

CVE-2006-4319

Buffer overflow in the format command in Solaris 8, 9, and 10 allows local users with access to format (such as the "File System Management" RBAC profile) to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2006-4307.

7.2CVSS7.2AI score0.0007EPSS

CVE•added 2006/05/05 10:0 p.m.•39 views

CVE-2005-4796

Unspecified vulnerability in the XView library (libxview.so) in Solaris 2.5 to 10 allows local users to corrupt files via unknown vectors related to the handling of the clipboard selection while an XView application exits.

3.6CVSS5.8AI score0.00073EPSS

CVE•added 2006/08/23 7:4 p.m.•39 views

CVE-2006-4307

Unspecified vulnerability in the format command in Sun Solaris 8 and 9 before 20060821 allows local users to modify arbitrary files via unspecified vectors involving profiles that permit running format with elevated privileges, a different issue than CVE-2006-4306 and CVE-2006-4319.

7.2CVSS6.2AI score0.0007EPSS

CVE•added 2006/07/18 3:47 p.m.•37 views

CVE-2006-3664

Unspecified vulnerability in NIS server on Sun Solaris 8, 9, and 10 allows local and remote attackers to cause a denial of service (ypserv hang) via unknown vectors.

5CVSS6.2AI score0.01849EPSS

CVE•added 2006/12/04 11:28 a.m.•37 views

CVE-2006-6275

Race condition in the kernel in Sun Solaris 8 through 10 allows local users to cause a denial of service (panic) via unspecified vectors, possibly related to the exitlwps function and SIGKILL and /proc PCAGENT signals.

4.7CVSS6.7AI score0.00048EPSS

CVE•added 2006/02/27 7:6 p.m.•35 views

CVE-2006-0901

Unspecified vulnerability in the hsfs filesystem in Solaris 8, 9, and 10 allows unspecified attackers to cause a denial of service (panic) or execute arbitrary code.

7.2CVSS6.9AI score0.00094EPSS