Vulnerabilities > SUN
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-11 | CVE-2003-1056 | Unspecified vulnerability in SUN Solaris and Sunos The ed editor for Sun Solaris 2.6, 7, and 8 allows local users to create or overwrite arbitrary files via a symlink attack on temporary files. | 7.2 |
| 2003-12-08 | CVE-2003-1057 | Buffer Overflow vulnerability in CDE DTPrintInfo Home Environment Variable Unknown vulnerability in CDE Print Viewer (dtprintinfo) for Sun Solaris 2.6 through 9 may allow local users to execute arbitrary code. | 7.2 |
| 2003-12-03 | CVE-2003-1058 | Unspecified vulnerability in SUN Solaris and Sunos The Xsun server for Sun Solaris 2.6 through 9, when running in Direct Graphics Access (DGA) mode, allows local users to cause a denial of service (Xsun crash) or to create or overwrite arbitrary files on the system, probably via a symlink attack on temporary server files. | 3.7 |
| 2003-11-20 | CVE-2003-1059 | Privilege Escalation vulnerability in Sun Solaris PGX32 Libraries Unspecific Unknown vulnerability in the libraries for the PGX32 frame buffer in Solaris 2.5.1 and 2.6 through 9 allows local users to gain root access. | 7.2 |
| 2003-11-17 | CVE-2003-0896 | Unspecified vulnerability in SUN JRE 1.3.0/1.4.1 The loadClass method of the sun.applet.AppletClassLoader class in the Java Virtual Machine (JVM) in Sun SDK and JRE 1.4.1_03 and earlier allows remote attackers to bypass sandbox restrictions and execute arbitrary code via a loaded class name that contains "/" (slash) instead of "." (dot) characters, which bypasses a call to the Security Manager's checkPackageAccess method. | 7.5 |
| 2003-10-27 | CVE-2003-1060 | Remote Denial Of Service vulnerability in Sun Solaris NFS Server The NFS Server for Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (UFS panic) via certain invalid UFS requests, which triggers a null dereference. | 5.0 |
| 2003-10-15 | CVE-2003-1062 | Unknown vulnerability in the sysinfo system call for Solaris for SPARC 2.6 through 9, and Solaris for x86 2.6, 7, and 8, allows local users to read kernel memory. | 4.6 |
| 2003-10-14 | CVE-2003-1061 | Kernel Race Condition vulnerability in Sun Solaris Pipe Function Race condition in Solaris 2.6 through 9 allows local users to cause a denial of service (kernel panic), as demonstrated via the namefs function, pipe, and certain STREAMS routines. | 1.2 |
| 2003-10-06 | CVE-2003-0694 | The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c. | 10.0 |
| 2003-09-22 | CVE-2003-0722 | Remote Administrative Access vulnerability in Sun Solaris SAdmin Client Credentials The default installation of sadmind on Solaris uses weak authentication (AUTH_SYS), which allows local and remote attackers to spoof Solstice AdminSuite clients and gain root privileges via a certain sequence of RPC packets. | 10.0 |