Vulnerabilities > SUN
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-07-16 | CVE-2001-1306 | Denial-Of-Service vulnerability in Iplanet Directory Server iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstrated by the PROTOS LDAPv3 test suite. | 7.5 |
| 2001-07-07 | CVE-2001-1244 | Denial of Service vulnerability in Multiple Vendor Small TCP MSS Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process. | 5.0 |
| 2001-07-05 | CVE-2001-1076 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable. | 7.2 |
| 2001-07-04 | CVE-2001-1075 | Unspecified vulnerability in SUN Cobalt RAQ 3I poprelayd script before 2.0 in Cobalt RaQ3 servers allows remote attackers to bypass authentication for relaying by causing a "POP login by user" string that includes the attacker's IP address to be injected into the maillog log file. | 5.0 |
| 2001-07-02 | CVE-2001-0426 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable. | 7.2 |
| 2001-07-02 | CVE-2001-0423 | Buffer Overflow vulnerability in SUN Solaris 7.0 Buffer overflow in ipcs in Solaris 7 x86 allows local users to execute arbitrary code via a long TZ (timezone) environmental variable, a different vulnerability than CAN-2002-0093. | 7.2 |
| 2001-07-02 | CVE-2001-0422 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in Xsun in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable. | 7.2 |
| 2001-07-02 | CVE-2001-0421 | Unspecified vulnerability in SUN Solaris and Sunos FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition. | 6.4 |
| 2001-06-27 | CVE-2001-0470 | Local Security vulnerability in SUN Sunos 5.8 Buffer overflow in SNMP proxy agent snmpd in Solaris 8 may allow local users to gain root privileges by calling snmpd with a long program name. | 7.2 |
| 2001-06-22 | CVE-2001-1328 | Unspecified vulnerability in SUN Sunos Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code. | 7.5 |