Sunos Security Vulnerabilities and Issues — Sunos CVE List

Lucene search

SunSunos

13 matches found

CVE•added 2000/02/04 5:0 a.m.•67 views

CVE-1999-0078

pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

1.9CVSS7.3AI score0.00139EPSS

CVE•added 2001/09/18 4:0 a.m.•56 views

CVE-2001-0095

catman in Solaris 2.7 and 2.8 allows local users to overwrite arbitrary files via a symlink attack on the sman_PID temporary file.

1.2CVSS6.3AI score0.00143EPSS

CVE•added 2005/02/08 5:0 a.m.•52 views

CVE-2003-1073

A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes pla...

1.2CVSS6.6AI score0.00165EPSS

CVE•added 2003/08/27 4:0 a.m.•48 views

CVE-2003-0669

Unknown vulnerability in Solaris 2.6 through 9 causes a denial of service (system panic) via "a rare race condition" or an attack by local users.

1.2CVSS6.4AI score0.00058EPSS

CVE•added 2005/02/08 5:0 a.m.•47 views

CVE-2003-1061

Race condition in Solaris 2.6 through 9 allows local users to cause a denial of service (kernel panic), as demonstrated via the namefs function, pipe, and certain STREAMS routines.

1.2CVSS6.2AI score0.00063EPSS

CVE•added 2013/04/17 12:14 p.m.•42 views

CVE-2013-0403

Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Utility.

1.9CVSS5.5AI score0.00055EPSS

CVE•added 2006/10/10 4:6 a.m.•40 views

CVE-2006-5214

Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows local users to read Xsession ...

1.2CVSS5.8AI score0.0006EPSS

CVE•added 2011/04/20 3:14 a.m.•40 views

CVE-2011-0790

Unspecified vulnerability in Oracle Solaris 9 and 10 allows local users to affect confidentiality via unknown vectors related to wbem.

1.7CVSS5.3AI score0.00053EPSS

CVE•added 2012/01/18 10:55 p.m.•40 views

CVE-2012-0098

Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel, a different vulnerability than CVE-2011-0813.

1.9CVSS5.5AI score0.00062EPSS

CVE•added 2015/01/21 7:59 p.m.•40 views

CVE-2015-0430

Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect confidentiality via vectors related to RPC Utility.

1.9CVSS5.3AI score0.00075EPSS

CVE•added 2012/10/17 12:55 a.m.•37 views

CVE-2012-3215

Unspecified vulnerability in Oracle Sun Solaris 10 and 11, when running on SPARC, allows local users to affect confidentiality via unknown vectors related to Kernel.

1.7CVSS5.4AI score0.00157EPSS

CVE•added 2011/07/21 12:55 a.m.•35 views

CVE-2011-2291

Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality via unknown vectors related to Trusted Extensions.

1.7CVSS5.3AI score0.00059EPSS

CVE•added 2013/04/17 12:14 p.m.•32 views

CVE-2013-1499

Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unknown vectors related to Network Configuration.

1.7CVSS5.6AI score0.00049EPSS