CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SUN » Sunos » 4.1 * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:o:sun:sunos:4.1:*:*:*:*:*:*:*
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-1999-1507 1993-02-03 2017-10-10
7.2
None Local Low Not required Complete Complete Complete
Sun SunOS 4.1 through 4.1.3 allows local attackers to gain root access via insecure permissions on files and directories such as crash.
2 CVE-1999-1468 +Priv 1991-10-22 2008-09-10
6.2
None Local High Not required Complete Complete Complete
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
3 CVE-1999-1438 +Priv 1991-02-22 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.
4 CVE-1999-1396 DoS 1992-07-21 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).
5 CVE-1999-1388 1994-05-13 2008-09-05
6.2
None Local High Not required Complete Complete Complete
passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument.
6 CVE-1999-1297 1998-07-15 2018-10-30
2.1
None Local Low Not required Partial None None
cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key.
7 CVE-1999-1258 +Info 1991-01-15 2017-10-10
5.0
None Remote Low Not required Partial None None
rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information.
8 CVE-1999-1137 1993-10-01 2018-10-30
2.1
None Local Low Not required Partial None None
The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.
9 CVE-1999-1123 +Priv 1991-05-20 2017-12-19
7.2
None Local Low Not required Complete Complete Complete
The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid root programs (1) makeinstall or (2) winstall.
10 CVE-1999-1021 1992-12-30 2017-10-10
7.2
None Local Low Not required Complete Complete Complete
NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade.
11 CVE-1999-0217 1997-01-01 2008-09-09
5.0
None Remote Low Not required None None Partial
Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems.
12 CVE-1999-0214 DoS 1992-07-21 2008-09-09
10.0
None Remote Low Not required Complete Complete Complete
Denial of service by sending forged ICMP unreachable packets.
13 CVE-1999-0209 1990-08-14 2008-09-09
5.0
None Remote Low Not required Partial None None
The SunView (SunTools) selection_svc facility allows remote users to read files.
14 CVE-1999-0165 1997-03-01 2018-10-30
10.0
None Remote Low Not required Complete Complete Complete
NFS cache poisoning.
15 CVE-1999-0120 1994-03-21 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Sun/Solaris utmp file allows local users to gain root access if it is writable by users other than root.
16 CVE-1999-0078 Exec Code 1996-04-18 2018-10-30
1.9
None Local Medium Not required Partial None None
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.
Total number of vulnerabilities : 16   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.