| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Solaris ufsrestore buffer overflow. |
| vold in Solaris 2.x allows local users to gain root access. |
| admintool in Solaris allows a local user to write to arbitrary files and gain root access. |
| Kodak Color Management System (KCMS) on Solaris allows a local user to write to arbitrary files and gain root access. |
| Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access. |
| NFS cache poisoning. |
| NFS allows users to use a "cd .." command to access other directories besides the exported file system. |
| NFS allows attackers to read and write any file on the system by specifying a false UID. |
| In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system parameters. |
| The SunView (SunTools) selection_svc facility allows remote users to read files. |
| Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server. |
| Unspecified vulnerability in WBEM Services A.01.x before A.01.05.12 and A.02.x before A.02.00.08 on HP-UX B.11.00 through B.11.23 allows remote attackers to cause an unspecified denial of service via unknown attack vectors. |
| Denial of service through Solaris 2.5.1 telnet by sending ^D characters. |
| Solaris volrmmount program allows attackers to read any file. |
| Buffer overflow in Solaris kcms_configure command allows local users to gain root access. |
| Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server. |
| The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages. |
| The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages. |
| The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337. |
| Buffer overflow in Solaris dtprintinfo program. |
