Vulnerabilities > SUN > Solaris > 7.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-07-03 | CVE-2002-0573 | Unspecified vulnerability in SUN Solaris and Sunos Format string vulnerability in RPC wall daemon (rpc.rwalld) for Solaris 2.5.1 through 8 allows remote attackers to execute arbitrary code via format strings in a message that is not properly provided to the syslog function when the wall command cannot be executed. | 7.5 |
2002-07-03 | CVE-2002-0572 | FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standard error), which may then be reused by a called setuid process that intended to perform I/O on normal files. | 7.2 |
2002-05-29 | CVE-2002-0033 | Heap Overflow vulnerability in Solaris cachefsd Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name. | 10.0 |
2002-04-02 | CVE-2002-0158 | Heap Overflow vulnerability in Sun Solaris XSun Color Database File Buffer overflow in Xsun on Solaris 2.6 through 8 allows local users to gain root privileges via a long -co (color database) command line argument. | 7.2 |
2001-12-31 | CVE-2001-1503 | Information Disclosure vulnerability in Solaris in.fingerd The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host. | 2.1 |
2001-12-12 | CVE-2001-0797 | Buffer Overflow vulnerability in Multiple Vendor System V Derived 'login' Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin. | 10.0 |
2001-10-09 | CVE-2001-1414 | Unspecified vulnerability in SUN Solaris and Sunos The Basic Security Module (BSM) for Solaris 2.5.1, 2.6, 7, and 8 does not log anonymous FTP access, which allows remote attackers to hide their activities, possibly when certain BSM audit files are not present under the FTP root. | 7.5 |
2001-08-14 | CVE-2001-0565 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option. | 4.6 |
2001-08-02 | CVE-2001-0594 | Buffer Overflow vulnerability in SUN Solaris and Sunos kcms_configure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument. | 4.6 |
2001-07-21 | CVE-2001-0353 | Remote Buffer Overflow vulnerability in Multiple Vendor lpd Buffer overflow in the line printer daemon (in.lpd) for Solaris 8 and earlier allows local and remote attackers to gain root privileges via a "transfer job" routine. | 10.0 |