Sunos
CVEs (563)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-1580 | 0.00 | — | 0.01 | Aug 23, 1995 | SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option. | |||
| CVE-1999-1080 | 0.00 | — | 0.00 | May 10, 1995 | rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentation and its use in previous versions of SunOS, which could allow local users with physical access to gain root privileges by mounting a floppy or CD-ROM that contains a setuid… | |||
| CVE-1999-1388 | 0.00 | — | 0.00 | May 13, 1994 | passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument. | |||
| CVE-1999-0120 | 0.00 | — | 0.00 | Mar 21, 1994 | Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root. | |||
| CVE-1999-0211 | 0.00 | — | 0.02 | Feb 14, 1994 | Extra long export lists over 256 characters in some mount daemons allows NFS directories to be mounted by anyone. | |||
| CVE-1999-0334 | 0.00 | — | 0.00 | Dec 16, 1993 | In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access. | |||
| CVE-1999-1137 | 0.00 | — | 0.00 | Oct 1, 1993 | The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone. | |||
| CVE-1999-1318 | 0.00 | — | 0.00 | Sep 17, 1993 | /usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs. | |||
| CVE-1999-1507 | 0.00 | — | 0.01 | Feb 3, 1993 | Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash. | |||
| CVE-1999-1021 | 0.00 | — | 0.00 | Dec 30, 1992 | NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade. | |||
| CVE-1999-0214 | 0.00 | — | 0.02 | Jul 21, 1992 | Denial of service by sending forged ICMP unreachable packets. | |||
| CVE-1999-1396 | 0.00 | — | 0.00 | Jul 21, 1992 | Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash). | |||
| CVE-1999-0168 | 0.00 | — | 0.02 | Jun 4, 1992 | The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the… | |||
| CVE-1999-1142 | 0.00 | — | 0.00 | May 27, 1992 | SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user. | |||
| CVE-1999-0167 | 0.00 | — | 0.00 | Dec 6, 1991 | In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system. | |||
| CVE-1999-1468 | 0.00 | — | 0.00 | Oct 22, 1991 | rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable. | |||
| CVE-1999-1212 | 0.00 | — | 0.00 | Mar 27, 1991 | Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges. | |||
| CVE-1999-1211 | 0.00 | — | 0.00 | Mar 27, 1991 | Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges. | |||
| CVE-1999-1438 | 0.00 | — | 0.00 | Feb 22, 1991 | Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments. | |||
| CVE-1999-1258 | 0.00 | — | 0.01 | Jan 15, 1991 | rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information. |
- CVE-1999-1580Aug 23, 1995risk 0.00cvss —epss 0.01
SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.
- CVE-1999-1080May 10, 1995risk 0.00cvss —epss 0.00
rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentation and its use in previous versions of SunOS, which could allow local users with physical access to gain root privileges by mounting a floppy or CD-ROM that contains a setuid…
- CVE-1999-1388May 13, 1994risk 0.00cvss —epss 0.00
passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument.
- CVE-1999-0120Mar 21, 1994risk 0.00cvss —epss 0.00
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root.
- CVE-1999-0211Feb 14, 1994risk 0.00cvss —epss 0.02
Extra long export lists over 256 characters in some mount daemons allows NFS directories to be mounted by anyone.
- CVE-1999-0334Dec 16, 1993risk 0.00cvss —epss 0.00
In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access.
- CVE-1999-1137Oct 1, 1993risk 0.00cvss —epss 0.00
The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.
- CVE-1999-1318Sep 17, 1993risk 0.00cvss —epss 0.00
/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs.
- CVE-1999-1507Feb 3, 1993risk 0.00cvss —epss 0.01
Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash.
- CVE-1999-1021Dec 30, 1992risk 0.00cvss —epss 0.00
NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade.
- CVE-1999-0214Jul 21, 1992risk 0.00cvss —epss 0.02
Denial of service by sending forged ICMP unreachable packets.
- CVE-1999-1396Jul 21, 1992risk 0.00cvss —epss 0.00
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).
- CVE-1999-0168Jun 4, 1992risk 0.00cvss —epss 0.02
The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the…
- CVE-1999-1142May 27, 1992risk 0.00cvss —epss 0.00
SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.
- CVE-1999-0167Dec 6, 1991risk 0.00cvss —epss 0.00
In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system.
- CVE-1999-1468Oct 22, 1991risk 0.00cvss —epss 0.00
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
- CVE-1999-1212Mar 27, 1991risk 0.00cvss —epss 0.00
Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges.
- CVE-1999-1211Mar 27, 1991risk 0.00cvss —epss 0.00
Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges.
- CVE-1999-1438Feb 22, 1991risk 0.00cvss —epss 0.00
Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.
- CVE-1999-1258Jan 15, 1991risk 0.00cvss —epss 0.01
rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information.
Page 28 of 29