Sunos@4.1.1 Security Vulnerabilities and Issues — Sunos@4.1.1 CVE List

loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584.

7.2CVSS6.5AI score0.00477EPSS

CVE•added 1999/09/29 4:0 a.m.•50 views

CVE-1999-0214

Denial of service by sending forged ICMP unreachable packets.

10CVSS7.4AI score0.00483EPSS

CVE•added 1999/09/29 4:0 a.m.•47 views

CVE-1999-0167

In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system.

4.6CVSS6.7AI score0.00098EPSS

CVE•added 2003/04/02 5:0 a.m.•47 views

CVE-1999-1468

rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.

6.2CVSS7.7AI score0.00085EPSS

CVE•added 1999/09/29 4:0 a.m.•45 views

CVE-1999-0132

Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access.

2.1CVSS7.4AI score0.00358EPSS

CVE•added 2005/08/30 4:0 a.m.•45 views

CVE-1999-1584

Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586.

10CVSS6.6AI score0.00477EPSS

CVE•added 1999/09/29 4:0 a.m.•44 views

CVE-1999-0051

Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX.

7.2CVSS7.4AI score0.00246EPSS

CVE•added 1999/09/29 4:0 a.m.•35 views

CVE-1999-0217

Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems.

5CVSS7.3AI score0.00504EPSS

CVE•added 2001/09/12 4:0 a.m.•34 views

CVE-1999-1123

The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid root programs (1) makeinstall or (2) winstall.

7.2CVSS7.5AI score0.01101EPSS

CVE•added 2005/04/21 4:0 a.m.•34 views

CVE-1999-1580

SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.

7.2CVSS6.8AI score0.00778EPSS

CVE•added 2002/03/09 5:0 a.m.•33 views

CVE-1999-1021

NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade.

7.2CVSS7.4AI score0.00083EPSS

CVE•added 2002/03/09 5:0 a.m.•33 views

CVE-1999-1297

cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key.

2.1CVSS7.2AI score0.0013EPSS

CVE•added 2002/03/09 5:0 a.m.•32 views

CVE-1999-1197

TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect console output and input, which could allow a local user to gain privileges.

7.2CVSS7.4AI score0.00537EPSS

CVE•added 2002/03/09 5:0 a.m.•32 views

CVE-1999-1318

/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs.

7.2CVSS7.3AI score0.0006EPSS

CVE•added 2001/09/12 4:0 a.m.•32 views

CVE-1999-1396

Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).

7.2CVSS7.7AI score0.00709EPSS

CVE•added 2002/03/09 5:0 a.m.•32 views

CVE-1999-1507

Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash.

7.2CVSS7.5AI score0.00073EPSS