2003-04-02 | CVE-2003-0161 | The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337. | 10.0 |
2003-04-02 | CVE-2003-0092 | Buffer Overflow vulnerability in SUN Solaris and Sunos Heap-based buffer overflow in dtsession for Solaris 2.5.1 through Solaris 9 allows local users to gain root privileges via a long HOME environment variable. | 7.2 |
2003-04-02 | CVE-2003-0091 | Unspecified vulnerability in SUN Solaris and Sunos Stack-based buffer overflow in the bsd_queue() function for lpq on Solaris 2.6 and 7 allows local users to gain root privilege. | 7.2 |
2003-03-25 | CVE-2003-0028 | Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different vulnerability than CVE-2002-0391. | 7.5 |
2003-03-03 | CVE-2003-0064 | The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. | 7.5 |
2003-02-28 | CVE-2003-1078 | Unspecified vulnerability in SUN Solaris and Sunos The FTP client for Solaris 2.6, 7, and 8 with the debug (-d) flag enabled displays the user password on the screen during login. network low complexity sun | 7.5 |
2003-02-18 | CVE-2003-1079 | Denial of Service vulnerability in Sun Solaris UDP RPC Packet Unknown vulnerability in UDP RPC for Solaris 2.5.1 through 9 for SPARC, and 2.5.1 through 8 for x86, allows remote attackers to cause a denial of service (memory consumption) via certain arguments in RPC calls that cause large amounts of memory to be allocated. network low complexity sun | 5.0 |
2003-02-11 | CVE-2003-1080 | Local Race Condition vulnerability in Sun Microsystems Solaris Mail Reading Unknown vulnerability in mail for Solaris 2.6 through 9 allows local users to read the email of other users. local high complexity sun | 1.2 |
2003-02-07 | CVE-2003-0027 | Unspecified vulnerability in SUN Solaris and Sunos Directory traversal vulnerability in Sun Kodak Color Management System (KCMS) library service daemon (kcms_server) allows remote attackers to read arbitrary files via the KCS_OPEN_PROFILE procedure. network low complexity sun | 5.0 |
2003-01-27 | CVE-2003-1075 | Remote Denial of Service vulnerability in Solaris in.ftpd Unknown vulnerability in the FTP server (in.ftpd) for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (temporary FTP server hang), which affects other active mode FTP clients. network low complexity sun | 5.0 |