Sun: >> Solaris >> 2.6 Security Vulnerabilities
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
CVSS Score
5.0
EPSS Score
0.256
Published
1998-01-05
The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).
CVSS Score
10.0
EPSS Score
0.013
Published
1997-10-29
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
CVSS Score
5.0
EPSS Score
0.005
Published
1997-08-24
DNS cache poisoning via BIND, by predictable query IDs.
CVSS Score
5.0
EPSS Score
0.013
Published
1997-08-13
ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping request to a multicast address through the loopback interface, e.g. via ping -i.
CVSS Score
2.1
EPSS Score
0.003
Published
1997-06-26
The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket.
CVSS Score
2.1
EPSS Score
0.001
Published
1997-05-17
Buffer overflow in Solaris fdformat command gives root access to local users.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-04-01
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-03-01
The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access.
CVSS Score
7.2
EPSS Score
0.004
Published
1997-02-01
In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access.
CVSS Score
7.2
EPSS Score
0.001
Published
1993-12-16