Vulnerabilities > SUN > Sunos > 5.8
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2001-07-02 | CVE-2001-0421 | Unspecified vulnerability in SUN Solaris and Sunos FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition. | 6.4 |
2001-06-27 | CVE-2001-0470 | Local Security vulnerability in SUN Sunos 5.8 Buffer overflow in SNMP proxy agent snmpd in Solaris 8 may allow local users to gain root privileges by calling snmpd with a long program name. | 7.2 |
2001-06-22 | CVE-2001-1328 | Unspecified vulnerability in SUN Sunos Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code. | 7.5 |
2001-06-18 | CVE-2001-0401 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable. | 7.2 |
2001-05-03 | CVE-2001-0269 | Security Bypass vulnerability in SUN Sunos 5.8 pam_ldap authentication module in Solaris 8 allows remote attackers to bypass authentication via a NULL password. | 10.0 |
2001-05-03 | CVE-2001-0236 | Buffer Overflow vulnerability in SUN Solaris and Sunos Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event. | 10.0 |
2001-05-03 | CVE-2001-0165 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in ximp40 shared library in Solaris 7 and Solaris 8 allows local users to gain privileges via a long "arg0" (process name) argument. | 7.2 |
2001-03-26 | CVE-2001-0190 | Unspecified vulnerability in SUN Solaris and Sunos Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0). | 7.2 |
2001-02-12 | CVE-2001-0095 | Unspecified vulnerability in SUN Sunos 5.7/5.8 catman in Solaris 2.7 and 2.8 allows local users to overwrite arbitrary files via a symlink attack on the sman_PID temporary file. | 1.2 |
2000-11-14 | CVE-2000-0844 | Permissions, Privileges, and Access Controls vulnerability in multiple products Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | 10.0 |