Sun: >> Solaris >> 2.5.1 Security Vulnerabilities
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.
CVSS Score
7.2
EPSS Score
0.004
Published
1999-09-13
sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack.
CVSS Score
4.6
EPSS Score
0.001
Published
1999-08-09
rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.
CVSS Score
7.5
EPSS Score
0.068
Published
1999-06-07
In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files.
CVSS Score
4.6
EPSS Score
0.001
Published
1999-02-10
Solaris ff.core allows local users to modify files.
CVSS Score
2.1
EPSS Score
0.002
Published
1999-01-07
rpc.admind in Solaris is not running in a secure mode.
CVSS Score
10.0
EPSS Score
0.005
Published
1999-01-01
The passwd command in Solaris can be subjected to a denial of service.
CVSS Score
7.2
EPSS Score
0.001
Published
1998-12-17
Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access.
CVSS Score
7.2
EPSS Score
0.001
Published
1998-12-12
Buffer overflow in Solaris kcms_configure command allows local users to gain root access.
CVSS Score
7.2
EPSS Score
0.002
Published
1998-12-01
Vacation program allows command execution by remote users through a sendmail command.
CVSS Score
7.5
EPSS Score
0.029
Published
1998-11-16