Vulnerabilities > SUN > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2001-05-03 | CVE-2001-0236 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event. | 10.0 |
2000-12-11 | CVE-2000-1076 | Netscape (iPlanet) Certificate Management System 4.2 and Directory Server 4.12 stores the administrative password in plaintext, which could allow local and possibly remote attackers to gain administrative privileges on the server. | 10.0 |
2000-11-14 | CVE-2000-0844 | Permissions, Privileges, and Access Controls vulnerability in multiple products Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | 10.0 |
2000-11-14 | CVE-2000-0812 | Unspecified vulnerability in SUN Java System web Server The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag. | 10.0 |
2000-10-20 | CVE-2000-0697 | Remote Command Execution vulnerability in Solaris AnswerBook2 The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands via shell metacharacters. | 10.0 |
2000-03-09 | CVE-2000-0175 | Unspecified vulnerability in SUN Staroffice 5.1 Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command. | 10.0 |
1999-12-31 | CVE-1999-1588 | Buffer Overflow vulnerability in SUN Solaris 2.4/2.5/2.5.1 Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766. | 10.0 |
1999-12-31 | CVE-1999-1584 | Unspecified vulnerability in SUN Openwindows and Sunos Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586. | 10.0 |
1999-12-22 | CVE-2000-0032 | Unspecified vulnerability in SUN Solaris and Sunos Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database. | 10.0 |
1999-12-10 | CVE-1999-0977 | Authentication vulnerability in Solaris sadmind Disabled Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request. | 10.0 |