Product:

Solaris

(Sun)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 456
Date Id Summary Products Score Patch Annotated
2002-08-12 CVE-2002-0391 Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdr_array through RPC services such as rpc.cmsd and dmispd. Freebsd, Windows_2000, Windows_nt, Windows_xp, Openbsd, Solaris, Sunos 9.8
2003-08-27 CVE-2003-0466 Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including (1) STOR, (2) RETR, (3) APPE, (4) DELE, (5) MKD, (6) RMD, (7) STOU, or (8) RNTO. Mac_os_x, Mac_os_x_server, Freebsd, Netbsd, Openbsd, Wu_ftpd, Solaris, Wu\-Ftpd 9.8
1999-08-09 CVE-1999-0676 sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack. Solaris, Sunos N/A
1999-08-11 CVE-1999-0875 DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes. Windows_2000, Windows_95, Windows_98se, Solaris, Sunos N/A
1999-11-20 CVE-1999-0818 Buffer overflow in Solaris kcms_configure via a long NETPATH environmental variable. Solaris, Sunos N/A
2001-10-18 CVE-2001-0779 Buffer overflow in rpc.yppasswdd (yppasswd server) in Solaris 2.6, 7 and 8 allows remote attackers to gain root access via a long username. Solaris, Sunos N/A
2004-10-19 CVE-2004-1353 Unknown vulnerability in LDAP on Sun Solaris 8 and 9, when using Role Based Access Control (RBAC), allows local users to execute certain commands with additional privileges. Solaris, Sunos N/A
2004-12-01 CVE-2004-1352 Buffer overflow in the ping daemon of Sun Solaris 7 through 9 may allow local users to execute arbitrary code. Solaris, Sunos N/A
2004-12-07 CVE-2004-1351 Unknown vulnerability in the rwho daemon (in.rwhod) for Solaris 7 through 9 allows remote attackers to execute arbitrary code. Solaris, Sunos N/A
1993-12-16 CVE-1999-0334 In Solaris 2.2 and 2.3, when fsck fails on startup, it allows a local user with physical access to obtain root access. Solaris, Sunos N/A