Shodan
Vulnerabilities
Vulnerable Software
Sun:  >> Solaris  Security Vulnerabilities
CVE-2001-1503
The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host.
CVSS Score
2.1
EPSS Score
0.002
Published
2001-12-31
CVE-2001-1555
pt_chmod in Solaris 8 does not call fdetach to reset terminal privileges when users log out of terminals, which allows local users to write to other users' terminals by modifying the ACL of a TTY.
CVSS Score
4.6
EPSS Score
0.001
Published
2001-12-31
CVE-2001-1582
Buffer overflow in the LDAP naming services library (libsldap) in Sun Solaris 8 allows local users to execute arbitrary code via a long LDAP_OPTIONS environment variable to a privileged program that uses libsldap.
CVSS Score
7.2
EPSS Score
0.002
Published
2001-12-31
CVE-2001-0797
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
CVSS Score
10.0
EPSS Score
0.886
Published
2001-12-12
CVE-2001-0779
Buffer overflow in rpc.yppasswdd (yppasswd server) in Solaris 2.6, 7 and 8 allows remote attackers to gain root access via a long username.
CVSS Score
10.0
EPSS Score
0.807
Published
2001-10-18
CVE-2001-1414
The Basic Security Module (BSM) for Solaris 2.5.1, 2.6, 7, and 8 does not log anonymous FTP access, which allows remote attackers to hide their activities, possibly when certain BSM audit files are not present under the FTP root.
CVSS Score
7.5
EPSS Score
0.007
Published
2001-10-09
CVE-2001-0686
Buffer overflow in mail included with SunOS 5.8 for x86 allows a local user to gain privileges via a long HOME environment variable.
CVSS Score
4.6
EPSS Score
0.001
Published
2001-09-20
CVE-2001-1066
ns6install installation script for Netscape 6.01 on Solaris, and other versions including 6.2.1 beta, allows local users to overwrite arbitrary files via a symlink attack.
CVSS Score
2.1
EPSS Score
0.001
Published
2001-08-31
CVE-2001-0526
Buffer overflow in the Xview library as used by mailtool in Solaris 8 and earlier allows a local attacker to gain privileges via the OPENWINHOME environment variable.
CVSS Score
4.6
EPSS Score
0.001
Published
2001-08-14
CVE-2001-0548
Buffer overflow in dtmail in Solaris 2.6 and 7 allows local users to gain privileges via the MAIL environment variable.
CVSS Score
4.6
EPSS Score
0.001
Published
2001-08-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved