Lucene search

K

53 matches found

CVE
CVE
added 2002/03/09 5:0 a.m.6366 views

CVE-2001-0554

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.

10CVSS7.4AI score0.27436EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.370 views

CVE-1999-0024

DNS cache poisoning via BIND, by predictable query IDs.

5CVSS6.7AI score0.01325EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.200 views

CVE-1999-0017

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.

7.5CVSS6.3AI score0.01136EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.162 views

CVE-1999-0038

Buffer overflow in xlock program allows local users to execute commands as root.

8.4CVSS7.9AI score0.00114EPSS
CVE
CVE
added 2002/06/25 4:0 a.m.153 views

CVE-2001-0797

Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

10CVSS7.4AI score0.88625EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.112 views

CVE-1999-0003

Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).

10CVSS7.5AI score0.90339EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.102 views

CVE-1999-0097

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

10CVSS7.2AI score0.01076EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.88 views

CVE-1999-0165

NFS cache poisoning.

10CVSS7.4AI score0.00946EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.86 views

CVE-2000-0844

Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

10CVSS7.7AI score0.00891EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.84 views

CVE-1999-0046

Buffer overflow of rlogin program using TERM environmental variable.

10CVSS7.1AI score0.0353EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.79 views

CVE-1999-0008

Buffer overflow in NIS+, in Sun's rpc.nisd program.

10CVSS7AI score0.03952EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.76 views

CVE-1999-0009

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

10CVSS7.3AI score0.8048EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.76 views

CVE-1999-0011

Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.

10CVSS7AI score0.10976EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.76 views

CVE-1999-0019

Delete or create a file via rpc.statd, due to invalid information.

5CVSS7.3AI score0.01078EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.75 views

CVE-1999-0010

Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.

5CVSS6.8AI score0.02EPSS
CVE
CVE
added 2000/03/22 5:0 a.m.73 views

CVE-1999-0189

Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111.

7.5CVSS6.7AI score0.00489EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.69 views

CVE-1999-0023

Local user gains root privileges via buffer overflow in rdist, via lookup() function.

7.2CVSS8AI score0.00705EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.62 views

CVE-1999-0054

Sun's ftpd daemon can be subjected to a denial of service.

5CVSS7.3AI score0.00562EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.62 views

CVE-1999-0143

Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys.

4.6CVSS7.3AI score0.00082EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.61 views

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

7.8CVSS7.4AI score0.00254EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.56 views

CVE-1999-0055

Buffer overflows in Sun libnsl allow root access.

7.2CVSS7.5AI score0.0008EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.56 views

CVE-1999-0295

Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges.

7.2CVSS7AI score0.0006EPSS
CVE
CVE
added 2000/06/02 4:0 a.m.56 views

CVE-1999-0493

rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.

7.5CVSS6.7AI score0.06771EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.55 views

CVE-1999-0056

Buffer overflow in Sun's ping program can give root access to local users.

7.2CVSS7.5AI score0.00067EPSS
CVE
CVE
added 2000/06/02 4:0 a.m.55 views

CVE-1999-0696

Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).

10CVSS6.9AI score0.05576EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.54 views

CVE-1999-0687

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

7.5CVSS7.3AI score0.07295EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.53 views

CVE-1999-0302

SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server.

7.5CVSS8.2AI score0.00639EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.52 views

CVE-1999-0301

Buffer overflow in SunOS/Solaris ps command.

7.2CVSS7.1AI score0.0041EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.52 views

CVE-2000-0471

Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.

7.2CVSS6.8AI score0.00344EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0188

The passwd command in Solaris can be subjected to a denial of service.

7.2CVSS7.3AI score0.00067EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0315

Buffer overflow in Solaris fdformat command gives root access to local users.

7.2CVSS7AI score0.00145EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.50 views

CVE-1999-0129

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

4.6CVSS6.6AI score0.00122EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.50 views

CVE-1999-0320

SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary files.

9.3CVSS6.8AI score0.00483EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.49 views

CVE-1999-0040

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

7.2CVSS7.9AI score0.003EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.48 views

CVE-1999-0674

The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve.

7.2CVSS6.7AI score0.00123EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.47 views

CVE-1999-0033

Command execution in Sun systems via buffer overflow in the at program.

7.2CVSS8.1AI score0.00137EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.47 views

CVE-1999-0099

Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.

10CVSS7.9AI score0.01375EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.46 views

CVE-1999-0190

Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access.

7.2CVSS7.7AI score0.00067EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.45 views

CVE-1999-0132

Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access.

2.1CVSS7.4AI score0.00358EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.44 views

CVE-1999-0164

A race condition in the Solaris ps command allows an attacker to overwrite critical files.

6.2CVSS7.4AI score0.00067EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.42 views

CVE-2001-0422

Buffer overflow in Xsun in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable.

7.2CVSS7.7AI score0.00263EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.41 views

CVE-1999-0185

In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.

7.5CVSS7.7AI score0.02697EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.41 views

CVE-1999-0300

nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+ servers.

7.5CVSS7.4AI score0.00489EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.41 views

CVE-1999-0369

The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access.

7.2CVSS8.2AI score0.0041EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.41 views

CVE-1999-0973

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.

10CVSS7.6AI score0.03141EPSS
CVE
CVE
added 2001/09/12 4:0 a.m.41 views

CVE-1999-1158

Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd.

7.2CVSS7.9AI score0.00143EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.40 views

CVE-1999-0303

Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.

4.6CVSS7.7AI score0.00055EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.40 views

CVE-1999-0339

Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root access.

7.2CVSS7.7AI score0.00063EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.40 views

CVE-1999-1423

ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping request to a multicast address through the loopback interface, e.g. via ping -i.

2.1CVSS7AI score0.00331EPSS
CVE
CVE
added 2000/02/08 5:0 a.m.40 views

CVE-2000-0118

The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.

7.2CVSS6.9AI score0.00148EPSS
Total number of security vulnerabilities53