Lucene search

K

73 matches found

CVE
CVE
added 2005/02/08 5:0 a.m.40 views

CVE-2003-1070

Unknown vulnerability in rpcbind for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (rpcbind crash).

5CVSS7AI score0.009EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.40 views

CVE-2003-1072

Memory leak in lofiadm in Solaris 8 allows local users to cause a denial of service (kernel memory consumption).

2.1CVSS6.2AI score0.00065EPSS
CVE
CVE
added 2005/01/19 5:0 a.m.40 views

CVE-2004-1348

Unknown vulnerability in in.named on Solaris 8 allows remote attackers to cause a denial of service (process crash).

5CVSS7AI score0.01498EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.40 views

CVE-2004-1393

Unknown vulnerability in the tcsetattr function for Sun Solaris for SPARC 2.6, 7, and 8 allows local users to cause a denial of service (system hang).

5CVSS6.6AI score0.01589EPSS
CVE
CVE
added 2005/05/02 4:0 a.m.40 views

CVE-2005-1124

Unknown vulnerability in the libgss Generic Security Services Library in Solaris 7, 8, and 9 allows local users to gain privileges by loading their own GSS-API.

4.6CVSS6.9AI score0.00066EPSS
CVE
CVE
added 2005/11/16 9:17 p.m.39 views

CVE-2002-2203

Unknown vulnerability in the System Serial Console terminal in Solaris 2.5.1, 2.6, and 7 allows local users to monitor keystrokes and possibly steal sensitive information.

4.9CVSS6.6AI score0.0007EPSS
CVE
CVE
added 2005/08/16 4:0 a.m.39 views

CVE-2004-2306

Sun Solaris 7 through 9, when Basic Security Module (BSM) is enabled and the SUNWscpu package has been removed as a result of security hardening, disables mail alerts from the audit_warn script, which might allow attackers to escape detection.

4.6CVSS7AI score0.00077EPSS
CVE
CVE
added 2005/05/02 4:0 a.m.39 views

CVE-2005-0248

The Solaris Management Console (SMC) GUI for Solaris 8 and 9, when creating user accounts that are configured for password aging, creates the accounts with a blank password, which allows remote or local attackers to break into those accounts.

7.5CVSS7.1AI score0.00567EPSS
CVE
CVE
added 2005/09/27 7:3 p.m.39 views

CVE-2005-3071

Unspecified vulnerability in Unix File System (UFS) on Solaris 8 and 9, when logging is enabled, allows local users to cause a denial of service ("soft hang") via certain write operations to UFS.

2.1CVSS6.2AI score0.00063EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.38 views

CVE-2002-1589

Unknown vulnerability in Solaris 8, when the 0x02 bit (aka TEST, KMF_DEADBEEF, or deadbeef) is set in the kmem_flags kernel parameter, allows local users to cause a denial of service (system panic).

2.1CVSS6.5AI score0.00065EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.38 views

CVE-2002-1590

The Web-Based Enterprise Management (WBEM) packages (1) SUNWwbdoc, (2) SUNWwbcou, (3) SUNWwbdev and (4) SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with world or group write permissions, which allows local users to gain root privileges or cause a denial of...

7.2CVSS7AI score0.00037EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.38 views

CVE-2003-1059

Unknown vulnerability in the libraries for the PGX32 frame buffer in Solaris 2.5.1 and 2.6 through 9 allows local users to gain root access.

7.2CVSS7.2AI score0.00047EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.38 views

CVE-2003-1079

Unknown vulnerability in UDP RPC for Solaris 2.5.1 through 9 for SPARC, and 2.5.1 through 8 for x86, allows remote attackers to cause a denial of service (memory consumption) via certain arguments in RPC calls that cause large amounts of memory to be allocated.

5CVSS7AI score0.01108EPSS
CVE
CVE
added 2005/01/19 5:0 a.m.37 views

CVE-2004-1353

Unknown vulnerability in LDAP on Sun Solaris 8 and 9, when using Role Based Access Control (RBAC), allows local users to execute certain commands with additional privileges.

7.2CVSS7.2AI score0.00058EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.37 views

CVE-2004-1394

The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the exec_attr database, which may allow local users with custom rights profiles to execute profile commands with additional privileges.

4.6CVSS7.2AI score0.00077EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.36 views

CVE-2003-1056

The ed editor for Sun Solaris 2.6, 7, and 8 allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.

7.2CVSS6.8AI score0.00047EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.36 views

CVE-2003-1067

Multiple buffer overflows in the (1) dbm_open function, as used in ndbm and dbm, and the (2) dbminit function in Solaris 2.6 through 9 allow local users to gain root privileges via long arguments to Xsun or other programs that use these functions.

7.2CVSS6.7AI score0.00092EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.36 views

CVE-2003-1076

Unknown vulnerability in sendmail for Solaris 7, 8, and 9 allows local users to cause a denial of service (unknown impact) and possibly gain privileges via certain constructs in a .forward file.

7.2CVSS6.6AI score0.00053EPSS
CVE
CVE
added 2005/05/02 4:0 a.m.36 views

CVE-2005-0816

Buffer overflow in newgrp in Solaris 7 through 9 allows local users to gain root privileges.

7.2CVSS7.2AI score0.0005EPSS
CVE
CVE
added 2005/06/21 4:0 a.m.35 views

CVE-2002-1763

The dtscreen Sun Solaris 8 CDE screensaver crashes when the "Shift" and "Return" keys are pressed repeatedly and quickly, which allows local users to access the current session.

4.6CVSS6.7AI score0.00073EPSS
CVE
CVE
added 2005/04/21 4:0 a.m.34 views

CVE-1999-1580

SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.

7.2CVSS6.8AI score0.00778EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.34 views

CVE-2003-1075

Unknown vulnerability in the FTP server (in.ftpd) for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (temporary FTP server hang), which affects other active mode FTP clients.

5CVSS7AI score0.00911EPSS
CVE
CVE
added 2005/01/19 5:0 a.m.34 views

CVE-2004-1356

Unknown vulnerability in the sendfilev function in Sun Solaris 8 and 9 allows local users to cause a denial of service (system panic) via unknown vectors.

2.1CVSS6.5AI score0.00063EPSS
Total number of security vulnerabilities73