Sunos
CVEs (563)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-0189 | 0.00 | — | 0.01 | Jun 4, 1997 | Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111. | |||
| CVE-1999-1449 | 0.00 | — | 0.00 | May 19, 1997 | SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device. | |||
| CVE-1999-0165 | 0.00 | — | 0.02 | Mar 1, 1997 | NFS cache poisoning. | |||
| CVE-1999-0318 | 0.00 | — | 0.01 | Mar 1, 1997 | Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable. | |||
| CVE-1999-0298 | 0.00 | — | 0.02 | Feb 5, 1997 | ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack. | |||
| CVE-1999-0966 | 0.00 | — | 0.00 | Jan 27, 1997 | Buffer overflow in Solaris getopt in libc allows local users to gain root privileges via a long argv[0]. | |||
| CVE-1999-0217 | 0.00 | — | 0.01 | Jan 1, 1997 | Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems. | |||
| CVE-1999-0345 | 0.00 | — | 0.01 | Jan 1, 1997 | Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems. | |||
| CVE-1999-0129 | 0.00 | — | 0.01 | Dec 3, 1996 | Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. | |||
| CVE-1999-0277 | 0.00 | — | 0.00 | Oct 28, 1996 | The WorkMan program can be used to overwrite any file to get root access. | |||
| CVE-1999-0132 | 0.00 | — | 0.00 | Aug 15, 1996 | Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access. | |||
| CVE-1999-0134 | 0.00 | — | 0.00 | Aug 6, 1996 | vold in Solaris 2.x allows local users to gain root access. | |||
| CVE-1999-0136 | 0.00 | — | 0.00 | Jul 31, 1996 | Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access. | |||
| CVE-1999-0135 | 0.00 | — | 0.00 | Jul 25, 1996 | admintool in Solaris allows a local user to write to arbitrary files and gain root access. | |||
| CVE-1999-0019 | 0.00 | — | 0.02 | Apr 24, 1996 | Delete or create a file via rpc.statd, due to invalid information. | |||
| CVE-1999-0078 | 0.00 | — | 0.01 | Apr 18, 1996 | pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call. | |||
| CVE-1999-0143 | 0.00 | — | 0.00 | Feb 21, 1996 | Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys. | |||
| CVE-1999-0241 | 0.00 | — | 0.04 | Nov 1, 1995 | Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm. | |||
| CVE-1999-0099 | 0.00 | — | 0.03 | Oct 19, 1995 | Buffer overflow in syslog utility allows local or remote attackers to gain root privileges. | |||
| CVE-1999-0164 | 0.00 | — | 0.00 | Aug 29, 1995 | A race condition in the Solaris ps command allows an attacker to overwrite critical files. |
- CVE-1999-0189Jun 4, 1997risk 0.00cvss —epss 0.01
Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111.
- CVE-1999-1449May 19, 1997risk 0.00cvss —epss 0.00
SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device.
- CVE-1999-0165Mar 1, 1997risk 0.00cvss —epss 0.02
NFS cache poisoning.
- CVE-1999-0318Mar 1, 1997risk 0.00cvss —epss 0.01
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
- CVE-1999-0298Feb 5, 1997risk 0.00cvss —epss 0.02
ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.
- CVE-1999-0966Jan 27, 1997risk 0.00cvss —epss 0.00
Buffer overflow in Solaris getopt in libc allows local users to gain root privileges via a long argv[0].
- CVE-1999-0217Jan 1, 1997risk 0.00cvss —epss 0.01
Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems.
- CVE-1999-0345Jan 1, 1997risk 0.00cvss —epss 0.01
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.
- CVE-1999-0129Dec 3, 1996risk 0.00cvss —epss 0.01
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
- CVE-1999-0277Oct 28, 1996risk 0.00cvss —epss 0.00
The WorkMan program can be used to overwrite any file to get root access.
- CVE-1999-0132Aug 15, 1996risk 0.00cvss —epss 0.00
Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access.
- CVE-1999-0134Aug 6, 1996risk 0.00cvss —epss 0.00
vold in Solaris 2.x allows local users to gain root access.
- CVE-1999-0136Jul 31, 1996risk 0.00cvss —epss 0.00
Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access.
- CVE-1999-0135Jul 25, 1996risk 0.00cvss —epss 0.00
admintool in Solaris allows a local user to write to arbitrary files and gain root access.
- CVE-1999-0019Apr 24, 1996risk 0.00cvss —epss 0.02
Delete or create a file via rpc.statd, due to invalid information.
- CVE-1999-0078Apr 18, 1996risk 0.00cvss —epss 0.01
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.
- CVE-1999-0143Feb 21, 1996risk 0.00cvss —epss 0.00
Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys.
- CVE-1999-0241Nov 1, 1995risk 0.00cvss —epss 0.04
Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm.
- CVE-1999-0099Oct 19, 1995risk 0.00cvss —epss 0.03
Buffer overflow in syslog utility allows local or remote attackers to gain root privileges.
- CVE-1999-0164Aug 29, 1995risk 0.00cvss —epss 0.00
A race condition in the Solaris ps command allows an attacker to overwrite critical files.
Page 27 of 29