Vulnerabilities > SUN > Sunos > 4.0

DATE CVE VULNERABILITY TITLE RISK
2012-06-12 CVE-2012-0217 Buffer Errors vulnerability in Freebsd
The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent SmartOS before 20120614T184600Z; FreeBSD before 9.0-RELEASE-p3; NetBSD 6.0 Beta and earlier; Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1; and possibly other operating systems, when running on an Intel processor, incorrectly uses the sysret path in cases where a certain address is not a canonical address, which allows local users to gain privileges via a crafted application.
7.2
2001-12-31 CVE-2001-1583 OS Command Injection vulnerability in SUN Sunos
lpd daemon (in.lpd) in Solaris 8 and earlier allows remote attackers to execute arbitrary commands via a job request with a crafted control file that is not properly handled when lpd invokes a mail program.
network
low complexity
sun CWE-78
critical
10.0
2001-10-30 CVE-2001-0652 Heap Overflow vulnerability in Solaris xlock
Heap overflow in xlock in Solaris 2.6 through 8 allows local users to gain root privileges via a long (1) XFILESEARCHPATH or (2) XUSERFILESEARCHPATH environmental variable.
local
low complexity
sun
7.2
2001-08-14 CVE-2001-0565 Buffer Overflow vulnerability in SUN Solaris and Sunos
Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option.
local
low complexity
sun
4.6
2001-07-02 CVE-2001-0421 Unspecified vulnerability in SUN Solaris and Sunos
FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition.
network
low complexity
sun
6.4
2001-06-18 CVE-2001-0401 Buffer Overflow vulnerability in SUN Solaris and Sunos
Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable.
local
low complexity
sun
7.2
2001-03-26 CVE-2001-0190 Unspecified vulnerability in SUN Solaris and Sunos
Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0).
local
low complexity
sun
7.2
1999-12-31 CVE-1999-1102 lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times.
local
low complexity
sgi apple bsd sun
2.1
1997-06-24 CVE-1999-1192 Unspecified vulnerability in SUN Sunos
Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument.
local
low complexity
sun
7.2
1997-05-19 CVE-1999-1191 Unspecified vulnerability in SUN Solaris and Sunos
Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument.
local
low complexity
sun
7.2