The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-06-09
Updated
2018-10-30
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database.
Max CVSS
10.0
EPSS Score
0.50%
Published
1999-12-22
Updated
2018-10-30
Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database.
Max CVSS
5.0
EPSS Score
4.96%
Published
1999-12-22
Updated
2018-10-30
Buffer overflow in nlps_server in Sun Solaris x86 2.4, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code as root via a long string beginning with "NLPS:002:002:" to the listen (aka System V listener) port, TCP port 2766.
Max CVSS
10.0
EPSS Score
2.86%
Published
1999-12-31
Updated
2008-09-05
/usr/ucb/ps in Sun Microsystems Solaris 8 and 9, and certain earlier releases, allows local users to view the environment variables and values of arbitrary processes via the -e option.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-31
Updated
2018-10-30
loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584.
Max CVSS
7.2
EPSS Score
0.06%
Published
1999-12-31
Updated
2017-07-11
The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges.
Max CVSS
7.2
EPSS Score
0.06%
Published
1999-12-31
Updated
2018-10-30
Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586.
Max CVSS
10.0
EPSS Score
0.13%
Published
1999-12-31
Updated
2008-09-05
cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain scripts, which allows a malicious site administrator to view or modify data located at another virtual site on the same system.
Max CVSS
3.6
EPSS Score
0.06%
Published
1999-11-08
Updated
2016-10-18
Internal HTTP server in Sun Netbeans Java IDE in Netbeans Developer 3.0 Beta and Forte Community Edition 1.0 Beta does not properly restrict access to IP addresses as specified in its configuration, which allows arbitrary remote attackers to access the server.
Max CVSS
7.5
EPSS Score
0.35%
Published
1999-11-23
Updated
2016-10-18
Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-03-08
Updated
2018-10-30
lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-31
Updated
2008-09-05
useradd in Solaris 7.0 does not properly interpret certain date formats as specified in the "-e" (expiration date) argument, which could allow users to login after their accounts have expired.
Max CVSS
4.6
EPSS Score
0.05%
Published
1999-06-10
Updated
2018-10-30
Buffer overflow in mail command in Solaris 2.7 and 2.7 allows local users to gain privileges via a long -m argument.
Max CVSS
4.6
EPSS Score
0.04%
Published
1999-09-13
Updated
2018-10-30
The Sun Web-Based Enterprise Management (WBEM) installation script stores a password in plaintext in a world readable file.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-12-05
Updated
2022-08-17
Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request.
Max CVSS
10.0
EPSS Score
1.44%
Published
1999-12-10
Updated
2018-10-30
Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.
Max CVSS
10.0
EPSS Score
0.56%
Published
1999-12-09
Updated
2018-10-30
Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is running in verbose mode.
Max CVSS
10.0
EPSS Score
1.91%
Published
1999-12-07
Updated
2018-10-30
Buffer overflow in Solaris lpstat via class argument allows local users to gain root access.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-01-28
Updated
2018-10-30
Buffer overflow in canuum program for Canna input system allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-11-02
Updated
2018-10-30
Buffer overflow in uum program for Canna input system allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
1999-11-02
Updated
2018-10-30
Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_enter.
Max CVSS
5.0
EPSS Score
0.25%
Published
1999-09-23
Updated
2018-10-30
DHCP clients with ICMP Router Discovery Protocol (IRDP) enabled allow remote attackers to modify their default routes.
Max CVSS
7.5
EPSS Score
1.49%
Published
1999-08-11
Updated
2018-10-30
Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-01
Updated
2018-10-30
Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse properly.
Max CVSS
2.1
EPSS Score
0.04%
Published
1999-12-01
Updated
2018-10-30
54 vulnerabilities found
1 2 3
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!