Vulnerabilities > SUN > Sunos > 4.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-06-12 | CVE-2012-0217 | Buffer Errors vulnerability in Freebsd The x86-64 kernel system-call functionality in Xen 4.1.2 and earlier, as used in Citrix XenServer 6.0.2 and earlier and other products; Oracle Solaris 11 and earlier; illumos before r13724; Joyent SmartOS before 20120614T184600Z; FreeBSD before 9.0-RELEASE-p3; NetBSD 6.0 Beta and earlier; Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1; and possibly other operating systems, when running on an Intel processor, incorrectly uses the sysret path in cases where a certain address is not a canonical address, which allows local users to gain privileges via a crafted application. | 7.2 |
2001-12-31 | CVE-2001-1583 | OS Command Injection vulnerability in SUN Sunos lpd daemon (in.lpd) in Solaris 8 and earlier allows remote attackers to execute arbitrary commands via a job request with a crafted control file that is not properly handled when lpd invokes a mail program. | 10.0 |
2001-10-30 | CVE-2001-0652 | Heap Overflow vulnerability in Solaris xlock Heap overflow in xlock in Solaris 2.6 through 8 allows local users to gain root privileges via a long (1) XFILESEARCHPATH or (2) XUSERFILESEARCHPATH environmental variable. | 7.2 |
2001-08-14 | CVE-2001-0565 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option. | 4.6 |
2001-07-02 | CVE-2001-0421 | Unspecified vulnerability in SUN Solaris and Sunos FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition. | 6.4 |
2001-06-18 | CVE-2001-0401 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable. | 7.2 |
2001-03-26 | CVE-2001-0190 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0). | 7.2 |
1999-12-31 | CVE-1999-1102 | lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times. | 2.1 |
1997-06-24 | CVE-1999-1192 | Unspecified vulnerability in SUN Sunos Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. | 7.2 |
1997-05-19 | CVE-1999-1191 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. | 7.2 |