CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SUN : Security Vulnerabilities Published In 1999

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2000-0118 1999-06-09 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
2 CVE-2000-0032 1999-12-22 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.
3 CVE-2000-0030 1999-12-22 2008-09-10
5.0
None Remote Low Not required None None Partial
Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database.
4 CVE-1999-1588 1 Exec Code Overflow 1999-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766.
5 CVE-1999-1587 1999-12-31 2008-09-05
2.1
None Local Low Not required Partial None None
/usr/ucb/ps in Sun Microsystems Solaris 8 and 9, and certain earlier releases, allows local users to view the environment variables and values of arbitrary processes via the -e option.
6 CVE-1999-1586 +Priv 1999-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584.
7 CVE-1999-1585 +Priv 1999-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges.
8 CVE-1999-1584 +Priv 1999-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586.
9 CVE-1999-1530 1999-11-08 2008-09-05
3.6
None Local Low Not required Partial Partial None
cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain scripts, which allows a malicious site administrator to view or modify data located at another virtual site on the same system.
10 CVE-1999-1527 1999-11-23 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edition 1.0 Beta does not properly restrict access to IP addresses as specified in its configuration, which allows arbitrary remote attackers to access the server.
11 CVE-1999-1371 Overflow +Priv 1999-03-08 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument.
12 CVE-1999-1102 1999-12-31 2008-09-05
2.1
None Local Low Not required None Partial None
lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times.
13 CVE-1999-1023 1999-06-10 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (expiration date) argument, which could allow users to login after their accounts have expired.
14 CVE-1999-1014 Overflow +Priv 1999-09-13 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument.
15 CVE-1999-0982 1999-12-05 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file.
16 CVE-1999-0977 Overflow +Priv 1999-12-10 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request.
17 CVE-1999-0974 Overflow +Priv 1999-12-09 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.
18 CVE-1999-0973 Overflow +Priv 1999-12-07 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.
19 CVE-1999-0952 Overflow 1999-01-28 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.
20 CVE-1999-0949 Overflow +Priv 1999-11-02 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in canuum program for Canna input system allows local users to gain root privileges.
21 CVE-1999-0948 Overflow +Priv 1999-11-02 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in uum program for Canna input system allows local users to gain root privileges.
22 CVE-1999-0908 DoS 1999-09-23 2008-09-09
5.0
None Remote Low Not required None None Partial
Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_enter.
23 CVE-1999-0875 16 1999-08-11 2008-09-09
7.5
None Remote Low Not required Partial Partial Partial
DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes.
24 CVE-1999-0860 1999-12-01 2008-09-09
2.1
None Local Low Not required Partial None None
Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack.
25 CVE-1999-0859 1999-12-01 2008-09-09
2.1
None Local Low Not required Partial None None
Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse properly.
26 CVE-1999-0851 DoS 1999-11-10 2008-09-09
2.1
None Local Low Not required None None Partial
Denial of service in BIND named via naptr.
27 CVE-1999-0848 DoS 1999-11-10 2008-09-09
5.0
None Remote Low Not required None None Partial
Denial of service in BIND named via consuming more than "fdmax" file descriptors.
28 CVE-1999-0841 Overflow +Priv 1999-11-30 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in CDE mailtool allows local users to gain root privileges via a long MIME Content-Type.
29 CVE-1999-0840 Overflow +Priv 1999-11-30 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in CDE dtmail and dtmailpr programs allows local users to gain privileges via a long -f option.
30 CVE-1999-0837 DoS 1999-11-10 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Denial of service in BIND by improperly closing TCP sessions via so_linger.
31 CVE-1999-0835 DoS 1999-11-10 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Denial of service in BIND named via malformed SIG records.
32 CVE-1999-0833 Overflow 1999-11-10 2008-09-09
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in BIND 8.2 via NXT records.
33 CVE-1999-0831 DoS 1999-11-19 2008-09-09
5.0
None Remote Low Not required None None Partial
Denial of service in Linux syslogd via a large number of connections.
34 CVE-1999-0818 Overflow 1999-11-20 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Solaris kcms_configure via a long NETPATH environmental variable.
35 CVE-1999-0806 Overflow 1999-05-10 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Solaris dtprintinfo program.
36 CVE-1999-0786 1999-09-22 2008-09-09
4.6
User Local Low Not required Partial Partial Partial
The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.
37 CVE-1999-0773 Overflow 1999-05-11 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Solaris lpset program allows local users to gain root access.
38 CVE-1999-0767 Overflow 1999-09-08 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in Solaris libc, ufsrestore, and rcp via LC_MESSAGES environmental variable.
39 CVE-1999-0722 1999-08-08 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages.
40 CVE-1999-0696 Overflow 1999-07-01 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd).
41 CVE-1999-0691 Overflow +Priv 1999-09-13 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.
42 CVE-1999-0689 Exec Code 1999-09-13 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.
43 CVE-1999-0687 Exec Code 1999-09-13 2008-09-09
7.5
User Remote Low Not required Partial Partial Partial
The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.
44 CVE-1999-0676 1999-08-09 2008-09-09
4.6
User Local Low Not required Partial Partial Partial
sdtcm_convert in Solaris 2.6 allows a local user to overwrite sensitive files via a symlink attack.
45 CVE-1999-0674 1999-08-09 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve.
46 CVE-1999-0568 1999-01-01 2008-09-05
10.0
None Remote Low Not required Complete Complete Complete
rpc.admind in Solaris is not running in a secure mode.
47 CVE-1999-0493 1999-06-07 2008-09-09
7.5
None Remote Low Not required Partial Partial Partial
rpc.statd allows remote attackers to forward RPC calls to the local operating system via the SM_MON and SM_NOTIFY commands, which in turn could be used to remotely exploit other bugs such as in automountd.
48 CVE-1999-0442 1999-01-07 2008-09-09
2.1
None Local Low Not required None Partial None
Solaris ff.core allows local users to modify files.
49 CVE-1999-0440 Exec Code 1999-03-01 2008-09-09
7.5
User Remote Low Not required Partial Partial Partial
The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages.
50 CVE-1999-0417 DoS 1999-03-09 2008-09-09
2.1
None Local Low Not required None None Partial
64 bit Solaris 7 procfs allows local users to perform a denial of service.
Total number of vulnerabilities : 54   Page : 1 (This Page)2
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.