Total
545 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0859 | 1 Sun | 2 Solaris, Sunos | 2024-11-20 | 2.1 LOW | N/A |
Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse properly. | |||||
CVE-1999-0848 | 2 Isc, Sun | 3 Bind, Solaris, Sunos | 2024-11-20 | 5.0 MEDIUM | N/A |
Denial of service in BIND named via consuming more than "fdmax" file descriptors. | |||||
CVE-1999-0837 | 2 Isc, Sun | 3 Bind, Solaris, Sunos | 2024-11-20 | 10.0 HIGH | N/A |
Denial of service in BIND by improperly closing TCP sessions via so_linger. | |||||
CVE-1999-0833 | 2 Isc, Sun | 3 Bind, Solaris, Sunos | 2024-11-20 | 7.5 HIGH | N/A |
Buffer overflow in BIND 8.2 via NXT records. | |||||
CVE-1999-0818 | 1 Sun | 2 Solaris, Sunos | 2024-11-20 | 7.2 HIGH | N/A |
Buffer overflow in Solaris kcms_configure via a long NETPATH environmental variable. | |||||
CVE-1999-0795 | 1 Sun | 2 Solaris, Sunos | 2024-11-20 | 7.5 HIGH | N/A |
The NIS+ rpc.nisd server allows remote attackers to execute certain RPC calls without authentication to obtain system information, disable logging, or modify caches. | |||||
CVE-1999-0786 | 1 Sun | 2 Solaris, Sunos | 2024-11-20 | 4.6 MEDIUM | N/A |
The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack. | |||||
CVE-1999-0773 | 1 Sun | 2 Solaris, Sunos | 2024-11-20 | 7.2 HIGH | N/A |
Buffer overflow in Solaris lpset program allows local users to gain root access. | |||||
CVE-1999-0767 | 1 Sun | 2 Solaris, Sunos | 2024-11-20 | 7.2 HIGH | N/A |
Buffer overflow in Solaris libc, ufsrestore, and rcp via LC_MESSAGES environmental variable. | |||||
CVE-1999-0696 | 2 Hp, Sun | 3 Hp-ux, Solaris, Sunos | 2024-11-20 | 10.0 HIGH | N/A |
Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd). | |||||
CVE-1999-0691 | 4 Cde, Digital, Ibm and 1 more | 5 Cde, Unix, Aix and 2 more | 2024-11-20 | 7.2 HIGH | N/A |
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name. | |||||
CVE-1999-0689 | 2 Cde, Sun | 3 Cde, Solaris, Sunos | 2024-11-20 | 7.2 HIGH | N/A |
The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack. | |||||
CVE-1999-0687 | 4 Cde, Digital, Ibm and 1 more | 5 Cde, Unix, Aix and 2 more | 2024-11-20 | 7.5 HIGH | N/A |
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. | |||||
CVE-1999-0676 | 1 Sun | 2 Solaris, Sunos | 2024-11-20 | 4.6 MEDIUM | N/A |
sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack. | |||||
CVE-1999-0674 | 3 Netbsd, Openbsd, Sun | 4 Netbsd, Openbsd, Solaris and 1 more | 2024-11-20 | 7.2 HIGH | N/A |
The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve. | |||||
CVE-1999-0568 | 1 Sun | 1 Solaris | 2024-11-20 | 10.0 HIGH | N/A |
rpc.admind in Solaris is not running in a secure mode. | |||||
CVE-1999-0513 | 7 Digital, Freebsd, Hp and 4 more | 8 Unix, Freebsd, Hp-ux and 5 more | 2024-11-20 | 5.0 MEDIUM | N/A |
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service. | |||||
CVE-1999-0502 | 3 Hp, Redhat, Sun | 4 Hp-ux, Linux, Solaris and 1 more | 2024-11-20 | 7.5 HIGH | N/A |
A Unix account has a default, null, blank, or missing password. | |||||
CVE-1999-0493 | 1 Sun | 2 Solaris, Sunos | 2024-11-20 | 7.5 HIGH | N/A |
rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd. | |||||
CVE-1999-0442 | 1 Sun | 2 Solaris, Sunos | 2024-11-20 | 2.1 LOW | N/A |
Solaris ff.core allows local users to modify files. |