Vulnerabilities > SUN > Sunos > 5.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-1394 | Unspecified vulnerability in SUN Solaris and Sunos The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the exec_attr database, which may allow local users with custom rights profiles to execute profile commands with additional privileges. | 4.6 |
| 2004-12-31 | CVE-2004-1393 | Denial Of Service vulnerability in Sun Solaris TCSetAttr System Hang Unknown vulnerability in the tcsetattr function for Sun Solaris for SPARC 2.6, 7, and 8 allows local users to cause a denial of service (system hang). | 5.0 |
| 2004-12-31 | CVE-2004-0780 | Local Buffer Overflow vulnerability in Sun Solaris UUSTAT Buffer overflow in uustat in Sun Solaris 8 and 9 allows local users to execute arbitrary code via a long -S command line argument. | 7.2 |
| 2004-12-21 | CVE-2004-1307 | Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow. | 7.5 |
| 2004-12-06 | CVE-2004-0496 | Multiple unknown vulnerabilities in Linux kernel 2.6 allow local users to gain privileges or access kernel memory, a different set of vulnerabilities than those identified in CVE-2004-0495, as found by the Sparse source code checking tool. | 7.2 |
| 2004-11-23 | CVE-2004-0360 | Passwd Local Root Compromise vulnerability in Sun Solaris Unknown vulnerability in passwd(1) in Solaris 8.0 and 9.0 allows local users to gain privileges via unknown attack vectors. | 7.2 |
| 2004-09-06 | CVE-2004-1348 | Remote Denial of Service vulnerability in Sun Solaris in.named Unknown vulnerability in in.named on Solaris 8 allows remote attackers to cause a denial of service (process crash). | 5.0 |
| 2004-08-24 | CVE-2004-0800 | Local Command Line Format String vulnerability in Sun DtMail Format string vulnerability in CDE Mailer (dtmail) on Solaris 8 and 9 allows local users to gain privileges via format strings in the argv[0] value. | 4.6 |
| 2004-08-18 | CVE-2004-0523 | Principal Name Buffer Overrun vulnerability in MIT Kerberos 5 KRB5_AName_To_Localname Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root. | 10.0 |
| 2004-08-10 | CVE-2004-1347 | Denial Of Service vulnerability in Sun Solaris XDMCP X Display Manager (XDM) on Solaris 8 allows remote attackers to cause a denial of service (XDM crash) via an invalid X Display Manager Control Protocol (XDMCP) request. | 5.0 |