Lucene search

K

74 matches found

CVE
CVE
added 2002/03/09 5:0 a.m.6366 views

CVE-2001-0554

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.

10CVSS7.4AI score0.27436EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.370 views

CVE-1999-0024

DNS cache poisoning via BIND, by predictable query IDs.

5CVSS6.7AI score0.01325EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.200 views

CVE-1999-0017

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.

7.5CVSS6.3AI score0.01136EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.162 views

CVE-1999-0038

Buffer overflow in xlock program allows local users to execute commands as root.

8.4CVSS7.9AI score0.00114EPSS
CVE
CVE
added 2002/06/25 4:0 a.m.153 views

CVE-2001-0797

Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

10CVSS7.4AI score0.88625EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.147 views

CVE-1999-0513

ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.

5CVSS7.3AI score0.25583EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.112 views

CVE-1999-0003

Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).

10CVSS7.5AI score0.90339EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.102 views

CVE-1999-0097

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

10CVSS7.2AI score0.01076EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.93 views

CVE-2003-0161

The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers...

10CVSS7.6AI score0.71952EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.88 views

CVE-1999-0165

NFS cache poisoning.

10CVSS7.4AI score0.00946EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.86 views

CVE-2000-0844

Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.

10CVSS7.7AI score0.00891EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.84 views

CVE-1999-0046

Buffer overflow of rlogin program using TERM environmental variable.

10CVSS7.1AI score0.0353EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.79 views

CVE-1999-0008

Buffer overflow in NIS+, in Sun's rpc.nisd program.

10CVSS7AI score0.03952EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.76 views

CVE-1999-0009

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

10CVSS7.3AI score0.8048EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.76 views

CVE-1999-0011

Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.

10CVSS7AI score0.10976EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.76 views

CVE-1999-0019

Delete or create a file via rpc.statd, due to invalid information.

5CVSS7.3AI score0.01078EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.75 views

CVE-1999-0010

Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.

5CVSS6.8AI score0.02EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.73 views

CVE-1999-0018

Buffer overflow in statd allows root privileges.

10CVSS7.7AI score0.10302EPSS
CVE
CVE
added 2000/03/22 5:0 a.m.73 views

CVE-1999-0189

Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111.

7.5CVSS6.7AI score0.00489EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.72 views

CVE-1999-0128

Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.

5CVSS9.2AI score0.15798EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.69 views

CVE-1999-0023

Local user gains root privileges via buffer overflow in rdist, via lookup() function.

7.2CVSS8AI score0.00705EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.67 views

CVE-1999-0078

pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

1.9CVSS7.3AI score0.00139EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.62 views

CVE-1999-0054

Sun's ftpd daemon can be subjected to a denial of service.

5CVSS7.3AI score0.00562EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.62 views

CVE-1999-0143

Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys.

4.6CVSS7.3AI score0.00082EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.61 views

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

7.8CVSS7.4AI score0.00254EPSS
CVE
CVE
added 2000/06/02 4:0 a.m.60 views

CVE-1999-0210

Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters.

10CVSS7.1AI score0.08326EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.56 views

CVE-1999-0055

Buffer overflows in Sun libnsl allow root access.

7.2CVSS7.5AI score0.0008EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.56 views

CVE-1999-0295

Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges.

7.2CVSS7AI score0.0006EPSS
CVE
CVE
added 2000/06/02 4:0 a.m.56 views

CVE-1999-0493

rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.

7.5CVSS6.7AI score0.06771EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.55 views

CVE-1999-0056

Buffer overflow in Sun's ping program can give root access to local users.

7.2CVSS7.5AI score0.00067EPSS
CVE
CVE
added 2000/06/02 4:0 a.m.55 views

CVE-1999-0696

Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).

10CVSS6.9AI score0.05576EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.54 views

CVE-1999-0687

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

7.5CVSS7.3AI score0.07295EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.52 views

CVE-1999-0301

Buffer overflow in SunOS/Solaris ps command.

7.2CVSS7.1AI score0.0041EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.52 views

CVE-2000-0471

Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.

7.2CVSS6.8AI score0.00344EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0065

Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands.

7.5CVSS7.9AI score0.01279EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0134

vold in Solaris 2.x allows local users to gain root access.

7.2CVSS7.3AI score0.0006EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0188

The passwd command in Solaris can be subjected to a denial of service.

7.2CVSS7.3AI score0.00067EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0315

Buffer overflow in Solaris fdformat command gives root access to local users.

7.2CVSS7AI score0.00145EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.51 views

CVE-1999-0370

In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files.

4.6CVSS7.3AI score0.00082EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.50 views

CVE-1999-0129

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

4.6CVSS6.6AI score0.00122EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.50 views

CVE-1999-0213

libnsl in Solaris allowed an attacker to perform a denial of service of rpcbind.

10CVSS7.2AI score0.00483EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.50 views

CVE-1999-0320

SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary files.

9.3CVSS6.8AI score0.00483EPSS
CVE
CVE
added 2001/05/07 4:0 a.m.50 views

CVE-2001-0190

Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0).

7.2CVSS6.9AI score0.00068EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.50 views

CVE-2001-1328

Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code.

7.5CVSS7.7AI score0.06209EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.49 views

CVE-1999-0040

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

7.2CVSS7.9AI score0.003EPSS
CVE
CVE
added 2001/05/07 4:0 a.m.49 views

CVE-1999-0223

Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry.

2.1CVSS7AI score0.00084EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.48 views

CVE-1999-0674

The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve.

7.2CVSS6.7AI score0.00123EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.47 views

CVE-1999-0033

Command execution in Sun systems via buffer overflow in the at program.

7.2CVSS8.1AI score0.00137EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.47 views

CVE-1999-0099

Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.

10CVSS7.9AI score0.01375EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.46 views

CVE-1999-0190

Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access.

7.2CVSS7.7AI score0.00067EPSS
Total number of security vulnerabilities74