Lucene search

K
SunSunos

187 matches found

CVE
CVE
added 2000/02/04 5:0 a.m.710 views

CVE-1999-0517

An SNMP community name is the default (e.g. public), null, or missing.

7.5CVSS6.7AI score0.92333EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.423 views

CVE-1999-0502

A Unix account has a default, null, blank, or missing password.

7.5CVSS6.4AI score0.35822EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.200 views

CVE-1999-0017

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.

7.5CVSS6.3AI score0.01136EPSS
CVE
CVE
added 2005/04/21 4:0 a.m.176 views

CVE-2004-1082

mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials.

7.5CVSS8.1AI score0.05469EPSS
CVE
CVE
added 2012/06/12 10:55 p.m.122 views

CVE-2012-0217

The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent SmartOS before 20120614T184600Z; FreeBSD before 9.0-RELEASE-p3; NetBSD 6.0 Beta and earlier; Microsoft...

7.2CVSS6.3AI score0.88861EPSS
CVE
CVE
added 2011/01/19 4:0 p.m.120 views

CVE-2010-2632

Unspecified vulnerability in the FTP Server in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affect availability. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable researcher that this is an issue in the gl...

7.8CVSS5.3AI score0.12495EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.119 views

CVE-2002-0573

Format string vulnerability in RPC wall daemon (rpc.rwalld) for Solaris 2.5.1 through 8 allows remote attackers to execute arbitrary code via format strings in a message that is not properly provided to the syslog function when the wall command cannot be executed.

7.5CVSS7.6AI score0.47418EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.98 views

CVE-2003-1063

The patches (1) 105693-13, (2) 108800-02, (3) 105694-13, and (4) 108801-02 for cachefs on Solaris 2.6 and 7 overwrite the inetd.conf file, which may silently reenable services and allow remote attackers to bypass the intended security policy.

7.5CVSS6.8AI score0.00428EPSS
CVE
CVE
added 2003/03/25 5:0 a.m.89 views

CVE-2003-0028

Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a differ...

7.5CVSS9.8AI score0.56051EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.84 views

CVE-2002-1317

Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query.

7.5CVSS8AI score0.42484EPSS
CVE
CVE
added 2000/03/22 5:0 a.m.73 views

CVE-1999-0189

Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111.

7.5CVSS6.7AI score0.00489EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.69 views

CVE-1999-0023

Local user gains root privileges via buffer overflow in rdist, via lookup() function.

7.2CVSS8AI score0.00705EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.69 views

CVE-1999-0833

Buffer overflow in BIND 8.2 via NXT records.

7.5CVSS6.9AI score0.01515EPSS
CVE
CVE
added 2004/12/06 5:0 a.m.69 views

CVE-2004-0496

Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool.

7.2CVSS6.5AI score0.0006EPSS
CVE
CVE
added 2002/07/23 4:0 a.m.68 views

CVE-2002-0677

CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.

7.5CVSS6.8AI score0.19026EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.62 views

CVE-2002-0158

Buffer overflow in Xsun on Solaris 2.6 through 8 allows local users to gain root privileges via a long -co (color database) command line argument.

7.2CVSS6.9AI score0.00178EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.61 views

CVE-1999-0022

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

7.8CVSS7.4AI score0.00254EPSS
CVE
CVE
added 2002/03/15 5:0 a.m.61 views

CVE-2002-0089

Buffer overflow in admintool in Solaris 2.5 through 8 allows local users to gain root privileges via long arguments to (1) the -d command line option, or (2) the PRODVERS argument in the .cdtoc file.

7.2CVSS6.9AI score0.00077EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.61 views

CVE-2002-0678

CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.

7.2CVSS6.2AI score0.0043EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.60 views

CVE-2001-1414

The Basic Security Module (BSM) for Solaris 2.5.1, 2.6, 7, and 8 does not log anonymous FTP access, which allows remote attackers to hide their activities, possibly when certain BSM audit files are not present under the FTP root.

7.5CVSS7.2AI score0.00717EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.59 views

CVE-1999-0168

The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the portmapper despite export rest...

7.5CVSS6.8AI score0.00696EPSS
CVE
CVE
added 2005/08/30 4:0 a.m.57 views

CVE-1999-1585

The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges.

7.2CVSS6.9AI score0.00052EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.56 views

CVE-1999-0055

Buffer overflows in Sun libnsl allow root access.

7.2CVSS7.5AI score0.0008EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.56 views

CVE-1999-0295

Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges.

7.2CVSS7AI score0.0006EPSS
CVE
CVE
added 2000/06/02 4:0 a.m.56 views

CVE-1999-0493

rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.

7.5CVSS6.7AI score0.06771EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.56 views

CVE-2001-0652

Heap overflow in xlock in Solaris 2.6 through 8 allows local users to gain root privileges via a long (1) XFILESEARCHPATH or (2) XUSERFILESEARCHPATH environmental variable.

7.2CVSS6.8AI score0.00111EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.55 views

CVE-1999-0056

Buffer overflow in Sun's ping program can give root access to local users.

7.2CVSS7.5AI score0.00067EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.54 views

CVE-1999-0687

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

7.5CVSS7.3AI score0.07295EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.54 views

CVE-1999-0767

Buffer overflow in Solaris libc, ufsrestore, and rcp via LC_MESSAGES environmental variable.

7.2CVSS7.3AI score0.00626EPSS
CVE
CVE
added 2005/02/08 5:0 a.m.54 views

CVE-2003-1068

Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4659277, a different vulnerability than CVE-2003-1082.

7.2CVSS6.8AI score0.00144EPSS
CVE
CVE
added 2004/11/23 5:0 a.m.54 views

CVE-2004-0360

Unknown vulnerability in passwd(1) in Solaris 8.0 and 9.0 allows local users to gain privileges via unknown attack vectors.

7.2CVSS6.3AI score0.00265EPSS
CVE
CVE
added 2006/01/10 7:0 p.m.54 views

CVE-2004-0780

Buffer overflow in uustat in Sun Solaris 8 and 9 allows local users to execute arbitrary code via a long -S command line argument.

7.2CVSS7.2AI score0.00084EPSS
CVE
CVE
added 2005/05/04 4:0 a.m.54 views

CVE-2004-1307

Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflo...

7.5CVSS7.7AI score0.05111EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.53 views

CVE-1999-0302

SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server.

7.5CVSS8.2AI score0.00639EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.53 views

CVE-1999-0818

Buffer overflow in Solaris kcms_configure via a long NETPATH environmental variable.

7.2CVSS7.2AI score0.0041EPSS
CVE
CVE
added 2005/08/30 4:0 a.m.53 views

CVE-1999-1586

loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584.

7.2CVSS6.5AI score0.00477EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.53 views

CVE-2000-0949

Heap overflow in savestr function in LBNL traceroute 1.4a5 and earlier allows a local user to execute arbitrary commands via the -g option.

7.2CVSS7.4AI score0.00192EPSS
CVE
CVE
added 2007/09/23 11:0 p.m.53 views

CVE-2001-1582

Buffer overflow in the LDAP naming services library (libsldap) in Sun Solaris 8 allows local users to execute arbitrary code via a long LDAP_OPTIONS environment variable to a privileged program that uses libsldap.

7.2CVSS7.7AI score0.00171EPSS
CVE
CVE
added 2002/03/15 5:0 a.m.53 views

CVE-2002-0084

Buffer overflow in the fscache_setup function of cachefsd in Solaris 2.6, 7, and 8 allows local users to gain root privileges via a long mount argument.

7.2CVSS6.5AI score0.03227EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.53 views

CVE-2003-0064

The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary...

7.5CVSS7.2AI score0.00871EPSS
CVE
CVE
added 2000/01/04 5:0 a.m.52 views

CVE-1999-0212

Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server.

7.8CVSS7.4AI score0.00727EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.52 views

CVE-1999-0301

Buffer overflow in SunOS/Solaris ps command.

7.2CVSS7.1AI score0.0041EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.52 views

CVE-2000-0471

Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.

7.2CVSS6.8AI score0.00344EPSS
CVE
CVE
added 2001/06/18 4:0 a.m.52 views

CVE-2001-0403

/opt/JSparm/bin/perfmon program in Solaris allows local users to create arbitrary files as root via the Logging File option in the GUI.

7.2CVSS6.8AI score0.00148EPSS
CVE
CVE
added 2001/07/02 4:0 a.m.52 views

CVE-2001-0426

Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable.

7.2CVSS7.3AI score0.00126EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0065

Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands.

7.5CVSS7.9AI score0.01279EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0134

vold in Solaris 2.x allows local users to gain root access.

7.2CVSS7.3AI score0.0006EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0188

The passwd command in Solaris can be subjected to a denial of service.

7.2CVSS7.3AI score0.00067EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.51 views

CVE-1999-0315

Buffer overflow in Solaris fdformat command gives root access to local users.

7.2CVSS7AI score0.00145EPSS
CVE
CVE
added 2002/03/09 5:0 a.m.51 views

CVE-2001-0699

Buffer overflow in cb_reset in the System Service Processor (SSP) package of SunOS 5.8 allows a local user to execute arbitrary code via a long argument.

7.2CVSS7.8AI score0.00058EPSS
Total number of security vulnerabilities187