Vulnerabilities (CVE)

Filtered by vendor Sun Subscribe
Filtered by product Solaris
Total 545 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-1413 1 Sun 2 Solaris, Sunos 2024-11-20 4.6 MEDIUM N/A
Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg.
CVE-1999-1402 2 Freebsd, Sun 3 Freebsd, Solaris, Sunos 2024-11-20 2.1 LOW N/A
The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket.
CVE-1999-1225 5 Digital, Linux, Netbsd and 2 more 5 Ultrix, Linux Kernel, Netbsd and 2 more 2024-11-20 5.0 MEDIUM N/A
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
CVE-1999-1191 1 Sun 2 Solaris, Sunos 2024-11-20 7.2 HIGH N/A
Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument.
CVE-1999-1137 1 Sun 2 Solaris, Sunos 2024-11-20 2.1 LOW N/A
The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.
CVE-1999-1118 1 Sun 1 Solaris 2024-11-20 2.1 LOW N/A
ndd in Solaris 2.6 allows local users to cause a denial of service by modifying certain TCP/IP parameters.
CVE-1999-1027 1 Sun 1 Solaris 2024-11-20 7.2 HIGH N/A
Solaris 2.6 HW3/98 installs admintool with world-writable permissions, which allows local users to gain privileges by replacing it with a Trojan horse program.
CVE-1999-1026 1 Sun 1 Solaris 2024-11-20 7.2 HIGH N/A
aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file.
CVE-1999-1025 1 Sun 2 Solaris, Sunos 2024-11-20 4.6 MEDIUM N/A
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.
CVE-1999-1014 1 Sun 2 Solaris, Sunos 2024-11-20 4.6 MEDIUM N/A
Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument.
CVE-1999-0982 1 Sun 2 Solaris, Web-based Enterprise Management 2024-11-20 7.2 HIGH N/A
The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file.
CVE-1999-0977 1 Sun 2 Solaris, Sunos 2024-11-20 10.0 HIGH N/A
Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request.
CVE-1999-0974 1 Sun 2 Solaris, Sunos 2024-11-20 10.0 HIGH N/A
Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.
CVE-1999-0973 1 Sun 2 Solaris, Sunos 2024-11-20 10.0 HIGH N/A
Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.
CVE-1999-0952 1 Sun 2 Solaris, Sunos 2024-11-20 7.2 HIGH N/A
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.
CVE-1999-0949 3 Sgi, Sun, Turbolinux 4 Irix, Solaris, Sunos and 1 more 2024-11-20 7.2 HIGH N/A
Buffer overflow in canuum program for Canna input system allows local users to gain root privileges.
CVE-1999-0948 3 Sgi, Sun, Turbolinux 4 Irix, Solaris, Sunos and 1 more 2024-11-20 7.2 HIGH N/A
Buffer overflow in uum program for Canna input system allows local users to gain root privileges.
CVE-1999-0908 1 Sun 2 Solaris, Sunos 2024-11-20 5.0 MEDIUM N/A
Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_enter.
CVE-1999-0875 2 Microsoft, Sun 5 Windows 2000, Windows 95, Windows 98se and 2 more 2024-11-20 7.5 HIGH N/A
DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes.
CVE-1999-0860 1 Sun 2 Solaris, Sunos 2024-11-20 2.1 LOW N/A
Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack.