Vulnerabilities > SUN > Solaris > 2.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-09-13 | CVE-1999-0687 | The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. | 7.5 |
| 1999-08-09 | CVE-1999-0674 | The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve. | 7.2 |
| 1999-06-09 | CVE-2000-0118 | The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing. | 7.2 |
| 1999-06-07 | CVE-1999-0493 | Unspecified vulnerability in SUN Solaris and Sunos rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd. | 7.5 |
| 1999-02-10 | CVE-1999-0370 | Unspecified vulnerability in SUN Solaris and Sunos In Sun Solaris and SunOS, man and catman contain vulnerabilities that allow overwriting arbitrary files. | 4.6 |
| 1998-12-17 | CVE-1999-0188 | Unspecified vulnerability in SUN Solaris and Sunos The passwd command in Solaris can be subjected to a denial of service. | 7.2 |
| 1998-08-31 | CVE-1999-0065 | Unspecified vulnerability in SUN Solaris and Sunos Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands. | 7.5 |
| 1998-07-16 | CVE-1999-1432 | Unspecified vulnerability in SUN Solaris and Sunos Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restoring, which could lead to increased privileges. | 7.5 |
| 1998-06-10 | CVE-1999-0054 | Unspecified vulnerability in SUN Solaris and Sunos Sun's ftpd daemon can be subjected to a denial of service. | 5.0 |
| 1998-05-21 | CVE-1999-0303 | Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames. | 4.6 |