Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
CVSS Score
10.0
EPSS Score
0.009
Published
2000-11-14
Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.
CVSS Score
7.2
EPSS Score
0.003
Published
2000-06-14
The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-12-31
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-06-09
Buffer overflow in Solaris dtprintinfo program.
CVSS Score
7.2
EPSS Score
0.004
Published
1999-05-10
Vacation program allows command execution by remote users through a sendmail command.
CVSS Score
7.5
EPSS Score
0.029
Published
1998-11-16
Buffer overflow in Sun's ping program can give root access to local users.
CVSS Score
7.2
EPSS Score
0.001
Published
1998-09-09
NIS finger allows an attacker to conduct a denial of service via a large number of finger requests, resulting in a large number of NIS queries.
CVSS Score
2.6
EPSS Score
0.005
Published
1998-06-29
Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.
CVSS Score
4.6
EPSS Score
0.001
Published
1998-05-21
Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server.
CVSS Score
7.8
EPSS Score
0.007
Published
1998-04-29