CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SUN : Security Vulnerabilities (CVSS score between 7 and 7.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
301 CVE-2001-0165 Overflow +Priv 2001-05-03 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in ximp40 shared library in Solaris 7 and Solaris 8 allows local users to gain privileges via a long "arg0" (process name) argument.
302 CVE-2001-0124 Overflow +Priv 2001-03-12 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in exrecover in Solaris 2.6 and earlier possibly allows local users to gain privileges via a long command line argument.
303 CVE-2001-0115 Exec Code Overflow 2001-03-12 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter.
304 CVE-2000-0949 Exec Code Overflow 2000-12-19 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Heap overflow in savestr function in LBNL traceroute 1.4a5 and earlier allows a local user to execute arbitrary commands via the -g option.
305 CVE-2000-0696 2000-10-20 2017-12-19
7.5
None Remote Low Not required Partial Partial Partial
The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts, which allows remote attackers to add user accounts to the interface by directly calling the admin CGI script.
306 CVE-2000-0629 Exec Code 2000-07-12 2008-09-10
7.5
None Remote Low Not required Partial Partial Partial
The default configuration of the Sun Java web server 2.0 and earlier allows remote attackers to execute arbitrary commands by uploading Java code to the server via board.html, then directly calling the JSP compiler servlet.
307 CVE-2000-0471 Overflow +Priv 2000-06-14 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname.
308 CVE-2000-0442 +Priv 2000-05-24 2008-09-10
7.5
None Remote Low Not required Partial Partial Partial
Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command.
309 CVE-2000-0431 Bypass 2000-05-22 2008-09-10
7.5
None Remote Low Not required Partial Partial Partial
Cobalt RaQ2 and RaQ3 does not properly set the access permissions and ownership for files that are uploaded via FrontPage, which allows attackers to bypass cgiwrap and modify files.
310 CVE-2000-0407 Exec Code Overflow 2000-05-12 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in Solaris netpr program allows local users to execute arbitrary commands via a long -p option.
311 CVE-2000-0337 Overflow +Priv 2000-04-24 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in Xsun X server in Solaris 7 allows local users to gain root privileges via a long -dev parameter.
312 CVE-2000-0317 Overflow +Priv 2000-04-24 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in Solaris 7 lpset allows local users to gain root privileges via a long -r option.
313 CVE-2000-0316 Overflow +Priv 2000-04-24 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in Solaris 7 lp allows local users to gain root privileges via a long -d option.
314 CVE-2000-0164 2000-02-20 2008-09-10
7.2
None Local Low Not required Complete Complete Complete
The installation of Sun Internet Mail Server (SIMS) creates a world-readable file that allows local users to obtain passwords.
315 CVE-2000-0118 1999-06-09 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
316 CVE-2000-0117 2000-01-30 2008-09-10
7.2
None Local Low Not required Complete Complete Complete
The siteUserMod.cgi program in Cobalt RaQ2 servers allows any Site Administrator to modify passwords for other users, site administrators, and possibly admin (root).
317 CVE-2000-0055 Overflow 2000-01-06 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option.
318 CVE-1999-1586 +Priv 1999-12-31 2017-07-11
7.2
None Local Low Not required Complete Complete Complete
loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584.
319 CVE-1999-1585 +Priv 1999-12-31 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges.
320 CVE-1999-1580 +Priv 1995-08-23 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.
321 CVE-1999-1527 1999-11-23 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edition 1.0 Beta does not properly restrict access to IP addresses as specified in its configuration, which allows arbitrary remote attackers to access the server.
322 CVE-1999-1507 1993-02-03 2017-10-10
7.2
None Local Low Not required Complete Complete Complete
Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash.
323 CVE-1999-1506 1990-01-29 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Vulnerability in SMI Sendmail 4.0 and earlier, on SunOS up to 4.0.3, allows remote attackers to access user bin.
324 CVE-1999-1438 +Priv 1991-02-22 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.
325 CVE-1999-1432 1998-07-16 2018-10-30
7.5
None Remote Low Not required Partial Partial Partial
Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restoring, which could lead to increased privileges.
326 CVE-1999-1419 Overflow +Priv 1997-07-30 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in nss_nisplus.so.1 library in NIS+ in Solaris 2.3 and 2.4 allows local users to gain root privileges.
327 CVE-1999-1396 DoS 1992-07-21 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).
328 CVE-1999-1371 Overflow +Priv 1999-03-08 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument.
329 CVE-1999-1318 +Priv 1993-09-17 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs.
330 CVE-1999-1212 +Priv 1991-03-27 2017-12-19
7.2
None Local Low Not required Complete Complete Complete
Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges.
331 CVE-1999-1211 +Priv 1991-03-27 2017-12-19
7.2
None Local Low Not required Complete Complete Complete
Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges.
332 CVE-1999-1197 +Priv 1990-12-20 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect console output and input, which could allow a local user to gain privileges.
333 CVE-1999-1192 Overflow +Priv 1997-06-24 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument.
334 CVE-1999-1191 Overflow +Priv 1997-05-19 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument.
335 CVE-1999-1158 Overflow +Priv 1997-05-13 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd.
336 CVE-1999-1142 +Priv 1992-05-27 2017-10-10
7.2
None Local Low Not required Complete Complete Complete
SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.
337 CVE-1999-1123 +Priv 1991-05-20 2017-12-19
7.2
None Local Low Not required Complete Complete Complete
The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid root programs (1) makeinstall or (2) winstall.
338 CVE-1999-1080 +Priv 1995-05-10 2018-05-03
7.2
None Local Low Not required Complete Complete Complete
rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentation and its use in previous versions of SunOS, which could allow local users with physical access to gain root privileges by mounting a floppy or CD-ROM that contains a setuid program and running volcheck, when the file systems do not have the nosuid option specified in rmmount.conf.
339 CVE-1999-1027 +Priv 1998-05-07 2018-05-03
7.2
None Local Low Not required Complete Complete Complete
Solaris 2.6 HW3/98 installs admintool with world-writable permissions, which allows local users to gain privileges by replacing it with a Trojan horse program.
340 CVE-1999-1026 +Priv 1996-12-20 2016-10-18
7.2
None Local Low Not required Complete Complete Complete
aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file.
341 CVE-1999-1021 1992-12-30 2017-10-10
7.2
None Local Low Not required Complete Complete Complete
NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade.
342 CVE-1999-0982 1999-12-05 2008-09-09
7.2
None Local Low Not required Complete Complete Complete
The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file.
343 CVE-1999-0966 Overflow +Priv 1997-01-27 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in Solaris getopt in libc allows local users to gain root privileges via a long argv[0].
344 CVE-1999-0952 Overflow 1999-01-28 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.
345 CVE-1999-0949 Overflow +Priv 1999-11-02 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in canuum program for Canna input system allows local users to gain root privileges.
346 CVE-1999-0948 Overflow +Priv 1999-11-02 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in uum program for Canna input system allows local users to gain root privileges.
347 CVE-1999-0875 16 1999-08-11 2018-10-30
7.5
None Remote Low Not required Partial Partial Partial
DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes.
348 CVE-1999-0868 Exec Code 1997-02-20 2008-09-09
7.2
None Local Low Not required Complete Complete Complete
ucbmail allows remote attackers to execute commands via shell metacharacters that are passed to it from INN.
349 CVE-1999-0841 Overflow +Priv 1999-11-30 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in CDE mailtool allows local users to gain root privileges via a long MIME Content-Type.
350 CVE-1999-0840 Overflow +Priv 1999-11-30 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in CDE dtmail and dtmailpr programs allows local users to gain privileges via a long -f option.
Total number of vulnerabilities : 404   Page : 1 2 3 4 5 6 7 (This Page)8 9
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.