The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket.
CVSS Score
2.1
EPSS Score
0.003
Published
1997-05-17
Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd.
CVSS Score
7.2
EPSS Score
0.003
Published
1997-05-13
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
CVSS Score
7.2
EPSS Score
0.002
Published
1997-05-01
Buffer overflow in xlock program allows local users to execute commands as root.
CVSS Score
8.4
EPSS Score
0.002
Published
1997-04-26
Buffer overflow in Solaris fdformat command gives root access to local users.
CVSS Score
7.2
EPSS Score
0.003
Published
1997-04-01
NFS cache poisoning.
CVSS Score
10.0
EPSS Score
0.005
Published
1997-03-01
Buffer overflow in xmcd 2.0p12 allows local users to gain access through an environmental variable.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-03-01
Buffer overflow in ffbconfig in Solaris 2.5.1.
CVSS Score
7.2
EPSS Score
0.009
Published
1997-02-10
Buffer overflow of rlogin program using TERM environmental variable.
CVSS Score
10.0
EPSS Score
0.069
Published
1997-02-06
ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.
CVSS Score
7.5
EPSS Score
0.016
Published
1997-02-05