Vulnerabilities > SUN
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-06-25 | CVE-2002-0348 | Unspecified vulnerability in SUN Cobalt RAQ 2, Cobalt RAQ 3I and Cobalt RAQ 4 service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long service argument. | 7.5 |
| 2002-06-25 | CVE-2002-0347 | Directory Traversal File Reading vulnerability in SUN Cobalt RAQ 2, Cobalt RAQ 3I and Cobalt RAQ 4 Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly files outside the web root, via a .. | 5.0 |
| 2002-06-25 | CVE-2002-0346 | Unspecified vulnerability in SUN Cobalt RAQ 2, Cobalt RAQ 3I and Cobalt RAQ 4 Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2) alert.cgi. | 7.5 |
| 2002-05-29 | CVE-2002-0033 | Heap Overflow vulnerability in Solaris cachefsd Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name. | 10.0 |
| 2002-04-02 | CVE-2002-0158 | Heap Overflow vulnerability in Sun Solaris XSun Color Database File Buffer overflow in Xsun on Solaris 2.6 through 8 allows local users to gain root privileges via a long -co (color database) command line argument. | 7.2 |
| 2002-03-19 | CVE-2002-0076 | Java Runtime Environment (JRE) Bytecode Verifier allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, as seen in (1) Microsoft VM build 3802 and earlier as used in Internet Explorer 4.x and 5.x, (2) Netscape 6.2.1 and earlier, and possibly other implementations that use vulnerable versions of SDK or JDK, aka a variant of the "Virtual Machine Verifier" vulnerability. | 7.5 |
| 2002-03-15 | CVE-2002-0090 | Buffer Overflow vulnerability in SUN Solaris 8.0 Buffer overflow in Low BandWidth X proxy (lbxproxy) in Solaris 8 allows local users to execute arbitrary code via a long display command line option. | 7.2 |
| 2002-03-15 | CVE-2002-0089 | Local Buffer Overflow vulnerability in Solaris admintool Buffer overflow in admintool in Solaris 2.5 through 8 allows local users to gain root privileges via long arguments to (1) the -d command line option, or (2) the PRODVERS argument in the .cdtoc file. | 7.2 |
| 2002-03-15 | CVE-2002-0088 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in admintool in Solaris 2.6, 7, and 8 allows local users to gain root privileges via a long media installation path. | 7.2 |
| 2002-03-15 | CVE-2002-0085 | Denial of Service vulnerability in Solaris cachefsd cachefsd in Solaris 2.6, 7, and 8 allows remote attackers to cause a denial of service (crash) via an invalid procedure call in an RPC request. | 5.0 |