VYPR

Solstice AdminSuite

by Sun Corporation

CVEs (6)

  • CVE-2008-4556Oct 14, 2008
    risk 0.09cvss epss 0.70

    Stack-based buffer overflow in the adm_build_path function in sadmind in Sun Solstice AdminSuite on Solaris 8 and 9 allows remote attackers to execute arbitrary code via a crafted request.

  • CVE-1999-1427Nov 10, 1997
    risk 0.00cvss epss 0.00

    Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges.

  • CVE-1999-1428Nov 10, 1997
    risk 0.00cvss epss 0.00

    Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the save option in the Database Manager, which is running with setgid bin privileges.

  • CVE-1999-1425Nov 10, 1997
    risk 0.00cvss epss 0.00

    Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd.

  • CVE-1999-1426Nov 10, 1997
    risk 0.00cvss epss 0.00

    Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files.

  • CVE-1999-1424Nov 10, 1997
    risk 0.00cvss epss 0.00

    Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table entries.