CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SUN » Sunos : Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-1999-0010 DoS 1998-04-08 2018-10-30
5.0
None Remote Low Not required None None Partial
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
2 CVE-1999-0015 DoS 1997-12-16 2018-05-03
5.0
None Remote Low Not required None None Partial
Teardrop IP denial of service.
3 CVE-1999-0016 DoS 1997-12-01 2008-09-09
5.0
None Remote Low Not required None None Partial
Land IP denial of service.
4 CVE-1999-0019 1996-04-24 2008-09-09
5.0
None Remote Low Not required None Partial None
Delete or create a file via rpc.statd, due to invalid information.
5 CVE-1999-0024 1997-08-13 2018-10-30
5.0
None Remote Low Not required None Partial None
DNS cache poisoning via BIND, by predictable query IDs.
6 CVE-1999-0054 DoS 1998-06-10 2018-10-30
5.0
None Remote Low Not required None None Partial
Sun's ftpd daemon can be subjected to a denial of service.
7 CVE-1999-0078 Exec Code 1996-04-18 2018-10-30
1.9
None Local Medium Not required Partial None None
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.
8 CVE-1999-0104 DoS 1997-12-16 2018-08-22
5.0
None Remote Low Not required None None Partial
A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.
9 CVE-1999-0125 Overflow 1998-01-25 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in SGI IRIX mailx program.
10 CVE-1999-0128 DoS 1996-12-18 2008-09-09
5.0
None Remote Low Not required None None Partial
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
11 CVE-1999-0129 1996-12-03 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
12 CVE-1999-0132 1996-08-15 2018-10-30
2.1
None Local Low Not required Partial None None
Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access.
13 CVE-1999-0143 1996-02-21 2020-01-21
4.6
None Local Low Not required Partial Partial Partial
Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys.
14 CVE-1999-0164 1995-08-29 2008-09-09
6.2
None Local High Not required Complete Complete Complete
A race condition in the Solaris ps command allows an attacker to overwrite critical files.
15 CVE-1999-0167 1991-12-06 2008-09-09
4.6
None Local Low Not required Partial Partial Partial
In SunOS, NFS file handles could be guessed, giving unauthorized access to the exported file system.
16 CVE-1999-0209 1990-08-14 2008-09-09
5.0
None Remote Low Not required Partial None None
The SunView (SunTools) selection_svc facility allows remote users to read files.
17 CVE-1999-0211 1994-02-14 2018-10-30
5.0
None Remote Low Not required Partial None None
Extra long export lists over 256 characters in some mount daemons allows NFS directories to be mounted by anyone.
18 CVE-1999-0217 1997-01-01 2008-09-09
5.0
None Remote Low Not required None None Partial
Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems.
19 CVE-1999-0223 1999-03-01 2018-10-30
2.1
None Local Low Not required None None Partial
Solaris syslogd crashes when receiving a message from a host that doesn't have an inverse DNS entry.
20 CVE-1999-0263 1998-07-16 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
Solaris SUNWadmap can be exploited to obtain root access.
21 CVE-1999-0273 DoS 1998-01-01 2018-10-30
5.0
None Remote Low Not required None None Partial
Denial of service through Solaris 2.5.1 telnet by sending ^D characters.
22 CVE-1999-0303 Overflow 1998-05-21 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.
23 CVE-1999-0345 DoS 1997-01-01 2008-09-09
5.0
None Remote Low Not required None None Partial
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.
24 CVE-1999-0370 1999-02-10 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files.
25 CVE-1999-0417 DoS 1999-03-09 2018-10-30
2.1
None Local Low Not required None None Partial
64 bit Solaris 7 procfs allows local users to perform a denial of service.
26 CVE-1999-0442 1999-01-07 2018-10-30
2.1
None Local Low Not required None Partial None
Solaris ff.core allows local users to modify files.
27 CVE-1999-0513 DoS 1998-01-05 2018-10-30
5.0
None Remote Low Not required None None Partial
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
28 CVE-1999-0676 1999-08-09 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack.
29 CVE-1999-0786 1999-09-22 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.
30 CVE-1999-0797 DoS 1998-06-29 2008-09-09
2.6
None Remote High Not required None None Partial
NIS finger allows an attacker to conduct a denial of service via a large number of finger requests, resulting in a large number of NIS queries.
31 CVE-1999-0848 DoS 1999-11-10 2018-10-30
5.0
None Remote Low Not required None None Partial
Denial of service in BIND named via consuming more than "fdmax" file descriptors.
32 CVE-1999-0851 DoS 1999-11-10 2018-10-30
2.1
None Local Low Not required None None Partial
Denial of service in BIND named via naptr.
33 CVE-1999-0859 1999-12-01 2018-10-30
2.1
None Local Low Not required Partial None None
Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse properly.
34 CVE-1999-0860 1999-12-01 2018-10-30
2.1
None Local Low Not required Partial None None
Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack.
35 CVE-1999-0908 DoS 1999-09-23 2018-10-30
5.0
None Remote Low Not required None None Partial
Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_enter.
36 CVE-1999-1014 Overflow +Priv 1999-09-13 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument.
37 CVE-1999-1023 1999-06-10 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (expiration date) argument, which could allow users to login after their accounts have expired.
38 CVE-1999-1025 1998-11-12 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.
39 CVE-1999-1102 1999-12-31 2008-09-05
2.1
None Local Low Not required None Partial None
lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times.
40 CVE-1999-1122 +Priv 1989-07-26 2018-05-03
4.6
None Local Low Not required Partial Partial Partial
Vulnerability in restore in SunOS 4.0.3 and earlier allows local users to gain privileges.
41 CVE-1999-1137 1993-10-01 2018-10-30
2.1
None Local Low Not required Partial None None
The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.
42 CVE-1999-1258 +Info 1991-01-15 2017-10-10
5.0
None Remote Low Not required Partial None None
rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information.
43 CVE-1999-1297 1998-07-15 2018-10-30
2.1
None Local Low Not required Partial None None
cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key.
44 CVE-1999-1388 1994-05-13 2008-09-05
6.2
None Local High Not required Complete Complete Complete
passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument.
45 CVE-1999-1402 1997-05-17 2018-10-30
2.1
None Local Low Not required None Partial None
The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket.
46 CVE-1999-1413 1996-08-03 2018-10-30
4.6
None Local Low Not required Partial Partial Partial
Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg.
47 CVE-1999-1423 DoS 1997-06-26 2018-10-30
2.1
None Local Low Not required None None Partial
ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping request to a multicast address through the loopback interface, e.g. via ping -i.
48 CVE-1999-1449 DoS 1997-05-19 2008-09-05
2.1
None Local Low Not required None None Partial
SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device.
49 CVE-1999-1468 +Priv 1991-10-22 2008-09-10
6.2
None Local High Not required Complete Complete Complete
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
50 CVE-1999-1587 1999-12-31 2018-10-30
2.1
None Local Low Not required Partial None None
/usr/ucb/ps in Sun Microsystems Solaris 8 and 9, and certain earlier releases, allows local users to view the environment variables and values of arbitrary processes via the -e option.
Total number of vulnerabilities : 318   Page : 1 (This Page)2 3 4 5 6 7
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.