Vulnerabilities > SUN > Solaris > 2.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-04-02 | CVE-2003-0161 | The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337. | 10.0 |
| 2001-12-12 | CVE-2001-0797 | Buffer Overflow vulnerability in Multiple Vendor System V Derived 'login' Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin. | 10.0 |
| 2001-03-12 | CVE-2001-0115 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter. | 7.2 |
| 2000-06-14 | CVE-2000-0471 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname. | 7.2 |
| 2000-01-06 | CVE-2000-0055 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option. | 7.2 |
| 1999-12-31 | CVE-1999-1588 | Buffer Overflow vulnerability in SUN Solaris 2.4/2.5/2.5.1 Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766. | 10.0 |
| 1999-12-09 | CVE-1999-0974 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service. | 10.0 |
| 1999-12-07 | CVE-1999-0973 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode. | 10.0 |
| 1999-09-22 | CVE-1999-0786 | Unspecified vulnerability in SUN Solaris and Sunos The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack. | 4.6 |
| 1999-09-13 | CVE-1999-0691 | Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name. | 7.2 |