Sun: >> Solaris >> 2.6 Security Vulnerabilities
rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.
CVSS Score
7.5
EPSS Score
0.068
Published
1999-06-07
Buffer overflow in Solaris lpset program allows local users to gain root access.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-05-11
In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files.
CVSS Score
4.6
EPSS Score
0.001
Published
1999-02-10
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-01-28
Solaris ff.core allows local users to modify files.
CVSS Score
2.1
EPSS Score
0.002
Published
1999-01-07
rpc.admind in Solaris is not running in a secure mode.
CVSS Score
10.0
EPSS Score
0.005
Published
1999-01-01
The passwd command in Solaris can be subjected to a denial of service.
CVSS Score
7.2
EPSS Score
0.001
Published
1998-12-17
Buffer overflow in Solaris kcms_configure command allows local users to gain root access.
CVSS Score
7.2
EPSS Score
0.002
Published
1998-12-01
Vacation program allows command execution by remote users through a sendmail command.
CVSS Score
7.5
EPSS Score
0.029
Published
1998-11-16
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.
CVSS Score
4.6
EPSS Score
0.001
Published
1998-11-12