Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Sunos
(Sun)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 566 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2001-10-30 | CVE-2001-0652 | Heap overflow in xlock in Solaris 2.6 through 8 allows local users to gain root privileges via a long (1) XFILESEARCHPATH or (2) XUSERFILESEARCHPATH environmental variable. | Sunos | N/A | ||
| 2001-08-02 | CVE-2001-0595 | Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program. | Sunos | N/A | ||
| 2001-08-02 | CVE-2001-0594 | kcms_configure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument. | Solaris, Sunos | N/A | ||
| 2001-08-14 | CVE-2001-0565 | Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option. | Solaris, Sunos | N/A | ||
| 2001-08-14 | CVE-2001-0548 | Buffer overflow in dtmail in Solaris 2.6 and 7 allows local users to gain privileges via the MAIL environment variable. | Solaris, Sunos | N/A | ||
| 2001-06-27 | CVE-2001-0470 | Buffer overflow in SNMP proxy agent snmpd in Solaris 8 may allow local users to gain root privileges by calling snmpd with a long program name. | Sunos | N/A | ||
| 2001-07-02 | CVE-2001-0426 | Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable. | Solaris, Sunos | N/A | ||
| 2001-07-02 | CVE-2001-0422 | Buffer overflow in Xsun in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable. | Solaris, Sunos | N/A | ||
| 2001-07-02 | CVE-2001-0421 | FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition. | Solaris, Sunos | N/A | ||
| 2001-06-18 | CVE-2001-0403 | /opt/JSparm/bin/perfmon program in Solaris allows local users to create arbitrary files as root via the Logging File option in the GUI. | Sunos | N/A |