| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-1999-1588 |
|
1
|
Exec Code Overflow |
1999-12-31 |
2008-09-05 |
10.0 |
Admin |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766. |
|
2 |
CVE-1999-1371 |
|
|
Overflow +Priv |
1999-03-08 |
2008-09-05 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument. |
|
3 |
CVE-1999-1014 |
|
|
Overflow +Priv |
1999-09-13 |
2008-09-05 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
|
Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument. |
|
4 |
CVE-1999-0977 |
|
|
Overflow +Priv |
1999-12-10 |
2008-09-09 |
10.0 |
Admin |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request. |
|
5 |
CVE-1999-0974 |
|
|
Overflow +Priv |
1999-12-09 |
2008-09-09 |
10.0 |
Admin |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service. |
|
6 |
CVE-1999-0973 |
|
|
Overflow +Priv |
1999-12-07 |
2008-09-09 |
10.0 |
Admin |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode. |
|
7 |
CVE-1999-0952 |
|
|
Overflow |
1999-01-28 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access. |
|
8 |
CVE-1999-0949 |
|
|
Overflow +Priv |
1999-11-02 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in canuum program for Canna input system allows local users to gain root privileges. |
|
9 |
CVE-1999-0948 |
|
|
Overflow +Priv |
1999-11-02 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in uum program for Canna input system allows local users to gain root privileges. |
|
10 |
CVE-1999-0841 |
|
|
Overflow +Priv |
1999-11-30 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in CDE mailtool allows local users to gain root privileges via a long MIME Content-Type. |
|
11 |
CVE-1999-0840 |
|
|
Overflow +Priv |
1999-11-30 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in CDE dtmail and dtmailpr programs allows local users to gain privileges via a long -f option. |
|
12 |
CVE-1999-0833 |
|
|
Overflow |
1999-11-10 |
2008-09-09 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Buffer overflow in BIND 8.2 via NXT records. |
|
13 |
CVE-1999-0818 |
|
|
Overflow |
1999-11-20 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in Solaris kcms_configure via a long NETPATH environmental variable. |
|
14 |
CVE-1999-0806 |
|
|
Overflow |
1999-05-10 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in Solaris dtprintinfo program. |
|
15 |
CVE-1999-0773 |
|
|
Overflow |
1999-05-11 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in Solaris lpset program allows local users to gain root access. |
|
16 |
CVE-1999-0767 |
|
|
Overflow |
1999-09-08 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in Solaris libc, ufsrestore, and rcp via LC_MESSAGES environmental variable. |
|
17 |
CVE-1999-0696 |
|
|
Overflow |
1999-07-01 |
2008-09-09 |
10.0 |
Admin |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd). |
|
18 |
CVE-1999-0691 |
|
|
Overflow +Priv |
1999-09-13 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name. |
|
19 |
CVE-1999-0410 |
|
|
Overflow |
1999-03-05 |
2008-09-09 |
7.2 |
Admin |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
The cancel command in Solaris 2.6 (i386) has a buffer overflow that allows local users to obtain root access. |
