Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Solaris
(Sun)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 456 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2002-10-28 | CVE-2002-1228 | Unknown vulnerability in NFS on Solaris 2.5.1 through Solaris 9 allows an NFS client to cause a denial of service by killing the lockd daemon. | Solaris, Sunos | N/A | ||
| 2002-10-28 | CVE-2002-1199 | The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. | Openlinux, Openserver, Solaris, Sunos | N/A | ||
| 2002-08-12 | CVE-2002-0797 | Buffer overflow in the MIB parsing component of mibiisa for Solaris 5.6 through 8 allows remote attackers to gain root privileges. | Solaris, Sunos | N/A | ||
| 2002-08-12 | CVE-2002-0796 | Format string vulnerability in the logging component of snmpdx for Solaris 5.6 through 8 allows remote attackers to gain root privileges. | Solaris, Sunos | N/A | ||
| 2002-09-05 | CVE-2002-0679 | Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure. | Openunix, Unixware, Tru64, Hp\-Ux, Aix, Solaris, Sunos, Dextop | N/A | ||
| 2002-07-23 | CVE-2002-0678 | CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure. | Openunix, Unixware, Tru64, Hp\-Ux, Aix, Irix, Solaris, Sunos, Dextop | N/A | ||
| 2002-07-23 | CVE-2002-0677 | CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. | Openunix, Unixware, Tru64, Hp\-Ux, Aix, Irix, Solaris, Sunos, Dextop | N/A | ||
| 2002-07-03 | CVE-2002-0573 | Format string vulnerability in RPC wall daemon (rpc.rwalld) for Solaris 2.5.1 through 8 allows remote attackers to execute arbitrary code via format strings in a message that is not properly provided to the syslog function when the wall command cannot be executed. | Solaris, Sunos | N/A | ||
| 2002-07-03 | CVE-2002-0572 | FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standard error), which may then be reused by a called setuid process that intended to perform I/O on normal files. | Freebsd, Openbsd, Solaris, Sunos | N/A | ||
| 2002-07-26 | CVE-2002-0436 | sscd_suncourier.pl CGI script in the Sun Sunsolve CD pack allows remote attackers to execute arbitrary commands via shell metacharacters in the email address parameter. | Solaris, Sunos | N/A |