Shodan
Vulnerabilities
Vulnerable Software
Sun:  >> Sunos  >> 4.1  Security Vulnerabilities
CVE-1999-1388
passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument.
CVSS Score
6.2
EPSS Score
0.001
Published
1994-05-13
CVE-1999-0120
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root.
CVSS Score
7.2
EPSS Score
0.001
Published
1994-03-21
CVE-1999-1137
The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.
CVSS Score
2.1
EPSS Score
0.001
Published
1993-10-01
CVE-1999-1318
/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs.
CVSS Score
7.2
EPSS Score
0.001
Published
1993-09-17
CVE-1999-1507
Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash.
CVSS Score
7.2
EPSS Score
0.001
Published
1993-02-03
CVE-1999-1021
NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade.
CVSS Score
7.2
EPSS Score
0.001
Published
1992-12-30
CVE-1999-0214
Denial of service by sending forged ICMP unreachable packets.
CVSS Score
10.0
EPSS Score
0.005
Published
1992-07-21
CVE-1999-1396
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).
CVSS Score
7.2
EPSS Score
0.007
Published
1992-07-21
CVE-1999-1142
SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.
CVSS Score
7.2
EPSS Score
0.001
Published
1992-05-27
CVE-1999-1468
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
CVSS Score
6.2
EPSS Score
0.001
Published
1991-10-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved