Sun Sunos vulnerabilities

537 known vulnerabilities affecting sun/sunos.

Total CVEs

537

CISA KEV

Public exploits

105

Exploited in wild

Severity breakdown

CRITICAL51HIGH178MEDIUM217LOW91

Vulnerabilities

Page 23 of 27

CVE-1999-1371HIGHCVSS 7.2PoCv5.5.1v5.71999-03-08

CVE-1999-1371 [HIGH] CVE-1999-1371: Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a l Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument.

nvd

CVE-1999-0223LOWCVSS 2.1v5.41999-03-01

CVE-1999-0223 [LOW] CVE-1999-0223: Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry. Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry.

nvd

CVE-1999-0370MEDIUMCVSS 4.6v5.4v5.5+2 more1999-02-10

CVE-1999-0370 [MEDIUM] CVE-1999-0370: In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary fi In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files.

nvd

CVE-1999-0952HIGHCVSS 7.2v5.71999-01-28

CVE-1999-0952 [HIGH] CVE-1999-0952: Buffer overflow in Solaris lpstat via class argument allows local users to gain root access. Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.

nvd

CVE-1999-0442LOWCVSS 2.1PoCv5.5v5.5.1+1 more1999-01-07

CVE-1999-0442 [LOW] CVE-1999-0442: Solaris ff.core allows local users to modify files. Solaris ff.core allows local users to modify files.

nvd

CVE-1999-0188HIGHCVSS 7.2v5.3v5.4+2 more1998-12-17

CVE-1999-0188 [HIGH] CVE-1999-0188: The passwd command in Solaris can be subjected to a denial of service. The passwd command in Solaris can be subjected to a denial of service.

nvd

CVE-1999-1025MEDIUMCVSS 4.6v5.61998-11-12

CVE-1999-1025 [MEDIUM] CVE-1999-1025: CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's co CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.

nvd

CVE-1999-0056HIGHCVSS 7.2v5.3v5.4+2 more1998-09-09

CVE-1999-0056 [HIGH] CVE-1999-0056: Buffer overflow in Sun's ping program can give root access to local users. Buffer overflow in Sun's ping program can give root access to local users.

nvd

CVE-1999-0302HIGHCVSS 7.5v5.3v5.5+1 more1998-09-01

CVE-1999-0302 [HIGH] CVE-1999-0302: SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server. SunOS/Solaris FTP clients can be forced to execute arbitrary commands from a malicious FTP server.

nvd

CVE-1999-0065HIGHCVSS 7.5v5.4v5.5+1 more1998-08-31

CVE-1999-0065 [HIGH] CVE-1999-0065: Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute comm Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands.

nvd

CVE-1999-0339HIGHCVSS 7.2v5.2v5.3+3 more1998-08-01

CVE-1999-0339 [HIGH] CVE-1999-0339: Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root access.

nvd

CVE-1999-1432HIGHCVSS 7.5PoCv5.4v5.5+1 more1998-07-16

CVE-1999-1432 [HIGH] CVE-1999-1432: Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restoring, which could lead to increased privileges.

nvd

CVE-1999-0213CRITICALCVSS 10.0v5.4v5.5+1 more1998-07-15

CVE-1999-0213 [CRITICAL] CVE-1999-0213: libnsl in Solaris allowed an attacker to perform a denial of service of rpcbind. libnsl in Solaris allowed an attacker to perform a denial of service of rpcbind.

nvd

CVE-1999-1297LOWCVSS 2.1v4.1v4.1.1+3 more1998-07-15

CVE-1999-1297 [LOW] CVE-1999-1297: cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical a cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key.

nvd

CVE-1999-0054MEDIUMCVSS 5.0v5.3v5.4+2 more1998-06-10

CVE-1999-0054 [MEDIUM] CVE-1999-0054: Sun's ftpd daemon can be subjected to a denial of service. Sun's ftpd daemon can be subjected to a denial of service.

nvd

CVE-1999-0008CRITICALCVSS 10.0v5.3v5.4+2 more1998-06-08

CVE-1999-0008 [CRITICAL] CVE-1999-0008: Buffer overflow in NIS+, in Sun's rpc.nisd program. Buffer overflow in NIS+, in Sun's rpc.nisd program.

nvd

CVE-1999-0303MEDIUMCVSS 4.6v4.1.3v4.1.4+7 more1998-05-21

CVE-1999-0303 [MEDIUM] CVE-1999-0303: Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames. Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.

nvd

CVE-1999-0212HIGHCVSS 7.8v5.01998-04-29

CVE-1999-0212 [HIGH] CVE-1999-0212: Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server.

nvd

CVE-1999-0009CRITICALCVSS 10.0PoCv5.3v5.4+2 more1998-04-08

CVE-1999-0009 [CRITICAL] CVE-1999-0009: Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

nvd

CVE-1999-0190HIGHCVSS 7.2v5.3v5.4+2 more1998-04-08

CVE-1999-0190 [HIGH] CVE-1999-0190: Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access. Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access.

nvd

← Previous23 / 27Next →