Sunos
CVEs (563)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-0837 | 0.00 | — | 0.03 | Nov 10, 1999 | Denial of service in BIND by improperly closing TCP sessions via so_linger. | |||
| CVE-1999-0851 | 0.00 | — | 0.00 | Nov 10, 1999 | Denial of service in BIND named via naptr. | |||
| CVE-1999-0833 | 0.00 | — | 0.02 | Nov 10, 1999 | Buffer overflow in BIND 8.2 via NXT records. | |||
| CVE-1999-0835 | 0.00 | — | 0.01 | Nov 10, 1999 | Denial of service in BIND named via malformed SIG records. | |||
| CVE-1999-0687 | 0.00 | — | 0.02 | Sep 13, 1999 | The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. | |||
| CVE-1999-0676 | 0.00 | — | 0.00 | Aug 9, 1999 | sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack. | |||
| CVE-1999-1023 | 0.00 | — | 0.00 | Jun 10, 1999 | useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (expiration date) argument, which could allow users to login after their accounts have expired. | |||
| CVE-1999-0223 | 0.00 | — | 0.00 | Mar 1, 1999 | Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry. | |||
| CVE-1999-0370 | 0.00 | — | 0.00 | Feb 10, 1999 | In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files. | |||
| CVE-1999-0952 | 0.00 | — | 0.00 | Jan 28, 1999 | Buffer overflow in Solaris lpstat via class argument allows local users to gain root access. | |||
| CVE-1999-0188 | 0.00 | — | 0.00 | Dec 17, 1998 | The passwd command in Solaris can be subjected to a denial of service. | |||
| CVE-1999-0139 | 0.00 | — | 0.00 | Dec 12, 1998 | Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access. | |||
| CVE-1999-1025 | 0.00 | — | 0.00 | Nov 12, 1998 | CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string. | |||
| CVE-1999-0056 | 0.00 | — | 0.00 | Sep 9, 1998 | Buffer overflow in Sun's ping program can give root access to local users. | |||
| CVE-1999-0302 | 0.00 | — | 0.02 | Sep 1, 1998 | SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server. | |||
| CVE-1999-0065 | 0.00 | — | 0.03 | Aug 31, 1998 | Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands. | |||
| CVE-1999-0339 | 0.00 | — | 0.00 | Aug 1, 1998 | Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root access. | |||
| CVE-1999-0263 | 0.00 | — | 0.00 | Jul 16, 1998 | Solaris SUNWadmap can be exploited to obtain root access. | |||
| CVE-1999-0213 | 0.00 | — | 0.02 | Jul 15, 1998 | libnsl in Solaris allowed an attacker to perform a denial of service of rpcbind. | |||
| CVE-1999-1297 | 0.00 | — | 0.00 | Jul 15, 1998 | cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key. |
- CVE-1999-0837Nov 10, 1999risk 0.00cvss —epss 0.03
Denial of service in BIND by improperly closing TCP sessions via so_linger.
- CVE-1999-0851Nov 10, 1999risk 0.00cvss —epss 0.00
Denial of service in BIND named via naptr.
- CVE-1999-0833Nov 10, 1999risk 0.00cvss —epss 0.02
Buffer overflow in BIND 8.2 via NXT records.
- CVE-1999-0835Nov 10, 1999risk 0.00cvss —epss 0.01
Denial of service in BIND named via malformed SIG records.
- CVE-1999-0687Sep 13, 1999risk 0.00cvss —epss 0.02
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.
- CVE-1999-0676Aug 9, 1999risk 0.00cvss —epss 0.00
sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack.
- CVE-1999-1023Jun 10, 1999risk 0.00cvss —epss 0.00
useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (expiration date) argument, which could allow users to login after their accounts have expired.
- CVE-1999-0223Mar 1, 1999risk 0.00cvss —epss 0.00
Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry.
- CVE-1999-0370Feb 10, 1999risk 0.00cvss —epss 0.00
In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files.
- CVE-1999-0952Jan 28, 1999risk 0.00cvss —epss 0.00
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.
- CVE-1999-0188Dec 17, 1998risk 0.00cvss —epss 0.00
The passwd command in Solaris can be subjected to a denial of service.
- CVE-1999-0139Dec 12, 1998risk 0.00cvss —epss 0.00
Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access.
- CVE-1999-1025Nov 12, 1998risk 0.00cvss —epss 0.00
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.
- CVE-1999-0056Sep 9, 1998risk 0.00cvss —epss 0.00
Buffer overflow in Sun's ping program can give root access to local users.
- CVE-1999-0302Sep 1, 1998risk 0.00cvss —epss 0.02
SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server.
- CVE-1999-0065Aug 31, 1998risk 0.00cvss —epss 0.03
Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands.
- CVE-1999-0339Aug 1, 1998risk 0.00cvss —epss 0.00
Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root access.
- CVE-1999-0263Jul 16, 1998risk 0.00cvss —epss 0.00
Solaris SUNWadmap can be exploited to obtain root access.
- CVE-1999-0213Jul 15, 1998risk 0.00cvss —epss 0.02
libnsl in Solaris allowed an attacker to perform a denial of service of rpcbind.
- CVE-1999-1297Jul 15, 1998risk 0.00cvss —epss 0.00
cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key.
Page 25 of 29