Vulnerabilities > SUN > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1997-11-10 | CVE-1999-1427 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges. | 6.2 |
| 1997-11-10 | CVE-1999-1426 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files. | 6.2 |
| 1997-11-10 | CVE-1999-1425 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd. | 6.2 |
| 1997-11-10 | CVE-1999-1424 | Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2 Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table entries. | 6.2 |
| 1997-08-24 | CVE-1999-1225 | rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not. | 5.0 |
| 1997-08-13 | CVE-1999-0024 | DNS cache poisoning via BIND, by predictable query IDs. | 5.0 |
| 1997-01-01 | CVE-1999-0345 | Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems. | 5.0 |
| 1997-01-01 | CVE-1999-0217 | Unspecified vulnerability in SUN Sunos Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems. | 5.0 |
| 1997-01-01 | CVE-1999-0166 | Unspecified vulnerability in SUN NFS NFS allows users to use a "cd .." command to access other directories besides the exported file system. | 5.0 |
| 1996-12-18 | CVE-1999-0128 | Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. | 5.0 |