Solaris
CVEs (497)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-0295 | 0.00 | — | 0.00 | Oct 1, 1997 | Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges. | |||
| CVE-1999-1225 | 0.00 | — | 0.02 | Aug 24, 1997 | rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not. | |||
| CVE-1999-0024 | 0.00 | — | 0.05 | Aug 13, 1997 | DNS cache poisoning via BIND, by predictable query IDs. | |||
| CVE-1999-1419 | 0.00 | — | 0.00 | Jul 30, 1997 | Buffer overflow in nss_nisplus.so.1 library in NIS+ in Solaris 2.3 and 2.4 allows local users to gain root privileges. | |||
| CVE-1999-1192 | 0.00 | — | 0.00 | Jun 24, 1997 | Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. | |||
| CVE-1999-0189 | 0.00 | — | 0.01 | Jun 4, 1997 | Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111. | |||
| CVE-1999-0165 | 0.00 | — | 0.02 | Mar 1, 1997 | NFS cache poisoning. | |||
| CVE-1999-0318 | 0.00 | — | 0.01 | Mar 1, 1997 | Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable. | |||
| CVE-1999-0129 | 0.00 | — | 0.01 | Dec 3, 1996 | Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. | |||
| CVE-1999-0132 | 0.00 | — | 0.00 | Aug 15, 1996 | Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access. | |||
| CVE-1999-0134 | 0.00 | — | 0.00 | Aug 6, 1996 | vold in Solaris 2.x allows local users to gain root access. | |||
| CVE-1999-0135 | 0.00 | — | 0.00 | Jul 25, 1996 | admintool in Solaris allows a local user to write to arbitrary files and gain root access. | |||
| CVE-1999-0241 | 0.00 | — | 0.04 | Nov 1, 1995 | Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm. | |||
| CVE-1999-0099 | 0.00 | — | 0.03 | Oct 19, 1995 | Buffer overflow in syslog utility allows local or remote attackers to gain root privileges. | |||
| CVE-1999-0120 | 0.00 | — | 0.00 | Mar 21, 1994 | Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root. | |||
| CVE-1999-0334 | 0.00 | — | 0.00 | Dec 16, 1993 | In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access. | |||
| CVE-1999-1137 | 0.00 | — | 0.00 | Oct 1, 1993 | The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone. |
- CVE-1999-0295Oct 1, 1997risk 0.00cvss —epss 0.00
Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges.
- CVE-1999-1225Aug 24, 1997risk 0.00cvss —epss 0.02
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
- CVE-1999-0024Aug 13, 1997risk 0.00cvss —epss 0.05
DNS cache poisoning via BIND, by predictable query IDs.
- CVE-1999-1419Jul 30, 1997risk 0.00cvss —epss 0.00
Buffer overflow in nss_nisplus.so.1 library in NIS+ in Solaris 2.3 and 2.4 allows local users to gain root privileges.
- CVE-1999-1192Jun 24, 1997risk 0.00cvss —epss 0.00
Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument.
- CVE-1999-0189Jun 4, 1997risk 0.00cvss —epss 0.01
Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111.
- CVE-1999-0165Mar 1, 1997risk 0.00cvss —epss 0.02
NFS cache poisoning.
- CVE-1999-0318Mar 1, 1997risk 0.00cvss —epss 0.01
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
- CVE-1999-0129Dec 3, 1996risk 0.00cvss —epss 0.01
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
- CVE-1999-0132Aug 15, 1996risk 0.00cvss —epss 0.00
Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access.
- CVE-1999-0134Aug 6, 1996risk 0.00cvss —epss 0.00
vold in Solaris 2.x allows local users to gain root access.
- CVE-1999-0135Jul 25, 1996risk 0.00cvss —epss 0.00
admintool in Solaris allows a local user to write to arbitrary files and gain root access.
- CVE-1999-0241Nov 1, 1995risk 0.00cvss —epss 0.04
Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm.
- CVE-1999-0099Oct 19, 1995risk 0.00cvss —epss 0.03
Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.
- CVE-1999-0120Mar 21, 1994risk 0.00cvss —epss 0.00
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root.
- CVE-1999-0334Dec 16, 1993risk 0.00cvss —epss 0.00
In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access.
- CVE-1999-1137Oct 1, 1993risk 0.00cvss —epss 0.00
The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.
Page 25 of 25