Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Solaris
(Sun)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 456 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2003-10-06 | CVE-2003-0694 | The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c. | Mac_os_x, Mac_os_x_server, Tru64, Freebsd, Linux, Hp\-Ux, Aix, Netbsd, Advanced_message_server, Sendmail, Sendmail_pro, Sendmail_switch, Irix, Solaris, Sunos, Turbolinux_advanced_server, Turbolinux_server, Turbolinux_workstation | N/A | ||
| 2003-08-27 | CVE-2003-0669 | Unknown vulnerability in Solaris 2.6 through 9 causes a denial of service (system panic) via "a rare race condition" or an attack by local users. | Solaris, Sunos | N/A | ||
| 2003-08-27 | CVE-2003-0609 | Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long LD_PRELOAD environment variable. | Solaris, Sunos | N/A | ||
| 2003-05-05 | CVE-2003-0201 | Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code. | Mac_os_x, Tru64, Cifs\-9000_server, Hp\-Ux, Samba, Samba\-Tng, Solaris, Sunos | N/A | ||
| 2003-05-05 | CVE-2003-0196 | Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201. | Tru64, Cifs\-9000_server, Hp\-Ux, Samba, Samba\-Tng, Solaris, Sunos | N/A | ||
| 2003-04-02 | CVE-2003-0161 | The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337. | Tru64, Hp\-Ux, Hp\-Ux_series_700, Hp\-Ux_series_800, Sis, Sendmail, Sendmail_switch, Solaris, Sunos | N/A | ||
| 2003-04-02 | CVE-2003-0092 | Heap-based buffer overflow in dtsession for Solaris 2.5.1 through Solaris 9 allows local users to gain root privileges via a long HOME environment variable. | Solaris, Sunos | N/A | ||
| 2003-04-02 | CVE-2003-0091 | Stack-based buffer overflow in the bsd_queue() function for lpq on Solaris 2.6 and 7 allows local users to gain root privilege. | Solaris, Sunos | N/A | ||
| 2003-03-03 | CVE-2003-0064 | The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands. | Hp\-Ux, Aix, Irix, Solaris, Sunos | N/A | ||
| 2003-02-07 | CVE-2003-0027 | Directory traversal vulnerability in Sun Kodak Color Management System (KCMS) library service daemon (kcms_server) allows remote attackers to read arbitrary files via the KCS_OPEN_PROFILE procedure. | Solaris, Sunos | N/A |