SUN : Security Vulnerabilities, CVEs, Published In 2001 (Overflow) CVSS score >= 3
Buffer overflow in the LDAP naming services library (libsldap) in Sun Solaris 8 allows local users to execute arbitrary code via a long LDAP_OPTIONS environment variable to a privileged program that uses libsldap.
Max CVSS
7.2
EPSS Score
0.12%
Published
2001-12-31
Updated
2018-10-30
Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
3.39%
Published
2001-06-22
Updated
2017-10-10
Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-07-05
Updated
2018-10-30
CVE-2001-0797
Public exploit
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
Max CVSS
10.0
EPSS Score
97.24%
Published
2001-12-12
Updated
2018-10-30
Buffer overflow in rpc.yppasswdd (yppasswd server) in Solaris 2.6, 7 and 8 allows remote attackers to gain root access via a long username.
Max CVSS
10.0
EPSS Score
19.47%
Published
2001-10-18
Updated
2018-10-30
Buffer overflow in ptexec in the Sun Validation Test Suite 4.3 and earlier allows a local user to gain privileges via a long -o argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-09-20
Updated
2018-05-03
Buffer overflow in cb_reset in the System Service Processor (SSP) package of SunOS 5.8 allows a local user to execute arbitrary code via a long argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-09-20
Updated
2018-10-30
Buffer overflow in mail included with SunOS 5.8 for x86 allows a local user to gain privileges via a long HOME environment variable.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-09-20
Updated
2018-05-03
Buffer overflow in the kcsSUNWIOsolf.so library in Solaris 7 and 8 allows local attackers to execute arbitrary commands via the KCMS_PROFILES environment variable, e.g. as demonstrated using the kcms_configure program.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-08-02
Updated
2018-10-30
kcms_configure as included with Solaris 7 and 8 allows a local attacker to gain additional privileges via a buffer overflow in a command line argument.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-08-02
Updated
2018-10-30
Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option.
Max CVSS
4.6
EPSS Score
0.05%
Published
2001-08-14
Updated
2018-10-30
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.
Max CVSS
10.0
EPSS Score
0.92%
Published
2001-08-14
Updated
2022-01-21
Buffer overflow in dtmail in Solaris 2.6 and 7 allows local users to gain privileges via the MAIL environment variable.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-08-14
Updated
2018-10-30
Buffer overflow in the Xview library as used by mailtool in Solaris 8 and earlier allows a local attacker to gain privileges via the OPENWINHOME environment variable.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-08-14
Updated
2018-05-03
Buffer overflow in SNMP proxy agent snmpd in Solaris 8 may allow local users to gain root privileges by calling snmpd with a long program name.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-06-27
Updated
2018-10-30
Buffer overflow in dtsession on Solaris, and possibly other operating systems, allows local users to gain privileges via a long LANG environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-07-02
Updated
2018-10-30
Buffer overflow in ipcs in Solaris 7 x86 allows local users to execute arbitrary code via a long TZ (timezone) environmental variable, a different vulnerability than CAN-2002-0093.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-07-02
Updated
2017-10-10
Buffer overflow in Xsun in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-07-02
Updated
2018-10-30
Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-06-18
Updated
2018-10-30
Buffer overflow in the line printer daemon (in.lpd) for Solaris 8 and earlier allows local and remote attackers to gain root privileges via a "transfer job" routine.
Max CVSS
10.0
EPSS Score
0.56%
Published
2001-07-21
Updated
2018-10-30
Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event.
Max CVSS
10.0
EPSS Score
78.02%
Published
2001-05-03
Updated
2018-10-30
Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0).
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-03-26
Updated
2018-10-30
Buffer overflow in ximp40 shared library in Solaris 7 and Solaris 8 allows local users to gain privileges via a long "arg0" (process name) argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-05-03
Updated
2018-10-30
Buffer overflow in exrecover in Solaris 2.6 and earlier possibly allows local users to gain privileges via a long command line argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2018-10-30
Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-03-12
Updated
2018-10-30
25 vulnerabilities found