| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Buffer overflow in statd allows root privileges. |
| Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases. |
| Solaris volrmmount program allows attackers to read any file. |
| Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges. |
| Buffer overflow in NIS+, in Sun's rpc.nisd program. |
| A hidden SNMP community string in HP OpenView allows remote attackers to modify MIB tables and obtain sensitive information. |
| Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm. |
| libnsl in Solaris allowed an attacker to perform a denial of service of rpcbind. |
| Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters. |
| Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access. |
| Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111. |
| The passwd command in Solaris can be subjected to a denial of service. |
| In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system parameters. |
| In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution. |
| NFS cache poisoning. |
| Buffer overflow in Solaris x86 mkcookie allows local users to obtain root access. |
| admintool in Solaris allows a local user to write to arbitrary files and gain root access. |
| Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access. |
| Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. |
| Buffer overflow in Solaris fdformat command gives root access to local users. |
