Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Solaris
(Sun)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 456 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2003-12-31 | CVE-2003-1073 | A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes place. | Solaris, Sunos | N/A | ||
| 2003-04-28 | CVE-2003-1072 | Memory leak in lofiadm in Solaris 8 allows local users to cause a denial of service (kernel memory consumption). | Solaris, Sunos | N/A | ||
| 2003-01-03 | CVE-2003-1071 | rpc.walld (wall daemon) for Solaris 2.6 through 9 allows local users to send messages to logged on users that appear to come from arbitrary user IDs by closing stderr before executing wall, then supplying a spoofed from header. | Solaris, Sunos | N/A | ||
| 2003-04-28 | CVE-2003-1070 | Unknown vulnerability in rpcbind for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (rpcbind crash). | Solaris, Sunos | N/A | ||
| 2003-06-03 | CVE-2003-1069 | The Telnet daemon (in.telnetd) for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (CPU consumption by infinite loop). | Solaris, Sunos | N/A | ||
| 2003-06-06 | CVE-2003-1068 | Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4659277, a different vulnerability than CVE-2003-1082. | Solaris, Sunos | N/A | ||
| 2003-06-19 | CVE-2003-1067 | Multiple buffer overflows in the (1) dbm_open function, as used in ndbm and dbm, and the (2) dbminit function in Solaris 2.6 through 9 allow local users to gain root privileges via long arguments to Xsun or other programs that use these functions. | Solaris, Sunos | N/A | ||
| 2003-12-31 | CVE-2003-1066 | Buffer overflow in the syslog daemon for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (syslogd crash) and possibly execute arbitrary code via long syslog UDP packets. | Solaris, Sunos | N/A | ||
| 2003-08-20 | CVE-2003-1063 | The patches (1) 105693-13, (2) 108800-02, (3) 105694-13, and (4) 108801-02 for cachefs on Solaris 2.6 and 7 overwrite the inetd.conf file, which may silently reenable services and allow remote attackers to bypass the intended security policy. | Solaris, Sunos | N/A | ||
| 2003-10-15 | CVE-2003-1062 | Unknown vulnerability in the sysinfo system call for Solaris for SPARC 2.6 through 9, and Solaris for x86 2.6, 7, and 8, allows local users to read kernel memory. | Solaris, Sunos | N/A |