Vulnerabilities > SUN
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2000-12-11 | CVE-2000-1075 | Directory traversal vulnerability in iPlanet Certificate Management System 4.2 and Directory Server 4.12 allows remote attackers to read arbitrary files via a .. | 5.0 |
| 2000-11-14 | CVE-2000-0844 | Permissions, Privileges, and Access Controls vulnerability in multiple products Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | 10.0 |
| 2000-11-14 | CVE-2000-0812 | Unspecified vulnerability in SUN Java System web Server The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag. | 10.0 |
| 2000-10-20 | CVE-2000-0697 | Remote Command Execution vulnerability in Solaris AnswerBook2 The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands via shell metacharacters. | 10.0 |
| 2000-10-20 | CVE-2000-0696 | Unspecified vulnerability in SUN Solaris Answerbook2 The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts, which allows remote attackers to add user accounts to the interface by directly calling the admin CGI script. | 7.5 |
| 2000-07-12 | CVE-2000-0629 | Unspecified vulnerability in SUN Java System web Server 1.1.3/2.0 The default configuration of the Sun Java web server 2.0 and earlier allows remote attackers to execute arbitrary commands by uploading Java code to the server via board.html, then directly calling the JSP compiler servlet. | 7.5 |
| 2000-06-14 | CVE-2000-0471 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname. | 7.2 |
| 2000-05-24 | CVE-2000-0442 | Qpopper 2.53 and earlier allows local users to gain privileges via a formatting string in the From: header, which is processed by the euidl command. | 7.5 |
| 2000-05-12 | CVE-2000-0407 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in Solaris netpr program allows local users to execute arbitrary commands via a long -p option. | 7.2 |
| 2000-04-24 | CVE-2000-0337 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in Xsun X server in Solaris 7 allows local users to gain root privileges via a long -dev parameter. | 7.2 |