Shodan
Vulnerabilities
Vulnerable Software
Sun:  >> Sunos  Security Vulnerabilities
CVE-1999-1318
/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs.
CVSS Score
7.2
EPSS Score
0.001
Published
1993-09-17
CVE-1999-1507
Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash.
CVSS Score
7.2
EPSS Score
0.001
Published
1993-02-03
CVE-1999-1021
NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade.
CVSS Score
7.2
EPSS Score
0.001
Published
1992-12-30
CVE-1999-0214
Denial of service by sending forged ICMP unreachable packets.
CVSS Score
10.0
EPSS Score
0.005
Published
1992-07-21
CVE-1999-1396
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).
CVSS Score
7.2
EPSS Score
0.007
Published
1992-07-21
CVE-1999-0168
The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the portmapper despite export restrictions.
CVSS Score
7.5
EPSS Score
0.007
Published
1992-06-04
CVE-1999-1142
SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.
CVSS Score
7.2
EPSS Score
0.001
Published
1992-05-27
CVE-1999-0167
In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system.
CVSS Score
4.6
EPSS Score
0.001
Published
1991-12-06
CVE-1999-1468
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
CVSS Score
6.2
EPSS Score
0.001
Published
1991-10-22
CVE-1999-1123
The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid root programs (1) makeinstall or (2) winstall.
CVSS Score
7.2
EPSS Score
0.011
Published
1991-05-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved