Filtered by vendor Sun
Subscribe
Total
1700 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-1427 | 1 Sun | 1 Solstice Adminsuite | 2023-12-10 | 6.2 MEDIUM | N/A |
Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges. | |||||
CVE-1999-1449 | 1 Sun | 1 Sunos | 2023-12-10 | 2.1 LOW | N/A |
SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device. | |||||
CVE-1999-0165 | 3 Bsdi, Linux, Sun | 5 Bsd Os, Linux Kernel, Nfs and 2 more | 2023-12-10 | 10.0 HIGH | N/A |
NFS cache poisoning. | |||||
CVE-1999-0806 | 1 Sun | 1 Sunos | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in Solaris dtprintinfo program. | |||||
CVE-2002-0796 | 1 Sun | 2 Solaris, Sunos | 2023-12-10 | 10.0 HIGH | N/A |
Format string vulnerability in the logging component of snmpdx for Solaris 5.6 through 8 allows remote attackers to gain root privileges. | |||||
CVE-2002-2425 | 1 Sun | 1 Solaris Answerbook2 | 2023-12-10 | 10.0 HIGH | N/A |
Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as (1) AdminViewError and (2) AdminAddadmin via a direct request. | |||||
CVE-2003-0914 | 9 Compaq, Freebsd, Hp and 6 more | 10 Tru64, Freebsd, Hp-ux and 7 more | 2023-12-10 | 4.3 MEDIUM | N/A |
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value. | |||||
CVE-1999-1585 | 1 Sun | 1 Sunos | 2023-12-10 | 7.2 HIGH | N/A |
The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges. | |||||
CVE-1999-1580 | 2 Sendmail, Sun | 2 Sendmail, Sunos | 2023-12-10 | 7.2 HIGH | N/A |
SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option. | |||||
CVE-1999-0273 | 1 Sun | 1 Sunos | 2023-12-10 | 5.0 MEDIUM | N/A |
Denial of service through Solaris 2.5.1 telnet by sending ^D characters. | |||||
CVE-1999-0442 | 1 Sun | 2 Solaris, Sunos | 2023-12-10 | 2.1 LOW | N/A |
Solaris ff.core allows local users to modify files. | |||||
CVE-2003-1060 | 1 Sun | 2 Solaris, Sunos | 2023-12-10 | 5.0 MEDIUM | N/A |
The NFS Server for Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (UFS panic) via certain invalid UFS requests, which triggers a null dereference. | |||||
CVE-2004-1082 | 8 Apache, Apple, Avaya and 5 more | 14 Http Server, Apache Mod Digest Apple, Communication Manager and 11 more | 2023-12-10 | 7.5 HIGH | N/A |
mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials. | |||||
CVE-2001-0059 | 1 Sun | 1 Sunos | 2023-12-10 | 6.2 MEDIUM | N/A |
patchadd in Solaris allows local users to overwrite arbitrary files via a symlink attack. | |||||
CVE-2000-0471 | 1 Sun | 2 Solaris, Sunos | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname. | |||||
CVE-1999-0241 | 3 Sgi, Sun, Xfree86 Project | 4 Irix, Solaris, Sunos and 1 more | 2023-12-10 | 10.0 HIGH | N/A |
Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm. | |||||
CVE-1999-0797 | 1 Sun | 1 Sunos | 2023-12-10 | 2.6 LOW | N/A |
NIS finger allows an attacker to conduct a denial of service via a large number of finger requests, resulting in a large number of NIS queries. | |||||
CVE-2002-1586 | 1 Sun | 2 Solaris, Sunos | 2023-12-10 | 2.1 LOW | N/A |
Solaris 2.5.1 through 9 allows local users to cause a denial of service (kernel panic) by setting the sd_struiowrq variable in the struioget function to null, which triggers a null dereference. | |||||
CVE-2000-0442 | 2 Qualcomm, Sun | 3 Qpopper, Cobalt Raq 2, Cobalt Raq 3i | 2023-12-10 | 7.5 HIGH | N/A |
Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command. | |||||
CVE-1999-0167 | 1 Sun | 1 Sunos | 2023-12-10 | 4.6 MEDIUM | N/A |
In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system. |