Solaris

solaris

Vendor: Sun • 450 CVEs

CVEs (450)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2003-1058 1Sun 2Solaris Sunos Apr 16, 2026 Dec 3, 2003 N/A· v4 N/A· v3 3.7 LOW· v2 The Xsun server for Sun Solaris 2.6 through 9, when running in Direct Graphics Access (DGA) mode, allows local users to cause a denial of service (Xsun crash) or to create or overwrite arbitrary files on the system, prob...Show more The Xsun server for Sun Solaris 2.6 through 9, when running in Direct Graphics Access (DGA) mode, allows local users to cause a denial of service (Xsun crash) or to create or overwrite arbitrary files on the system, probably via a symlink attack on temporary server files.Show less
CVE-2003-1059 1Sun 2Solaris Sunos Apr 16, 2026 Nov 20, 2003 N/A· v4 N/A· v3 7.2 HIGH· v2 Unknown vulnerability in the libraries for the PGX32 frame buffer in Solaris 2.5.1 and 2.6 through 9 allows local users to gain root access.
CVE-2003-1060 1Sun 2Solaris Sunos Apr 16, 2026 Oct 27, 2003 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The NFS Server for Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (UFS panic) via certain invalid UFS requests, which triggers a null dereference.
CVE-2003-1061 1Sun 2Solaris Sunos Apr 16, 2026 Oct 14, 2003 N/A· v4 N/A· v3 1.2 LOW· v2 Race condition in Solaris 2.6 through 9 allows local users to cause a denial of service (kernel panic), as demonstrated via the namefs function, pipe, and certain STREAMS routines.
CVE-2003-0694 11Apple CompaqFreebsd+8 more 18Advanced Message Server AixFreebsd+15 more Apr 16, 2026 Oct 6, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
CVE-2003-0722 1Sun 1Solaris Apr 16, 2026 Sep 22, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 The default installation of sadmind on Solaris uses weak authentication (AUTH_SYS), which allows local and remote attackers to spoof Solstice AdminSuite clients and gain root privileges via a certain sequence of RPC pack...Show more The default installation of sadmind on Solaris uses weak authentication (AUTH_SYS), which allows local and remote attackers to spoof Solstice AdminSuite clients and gain root privileges via a certain sequence of RPC packets.Show less
CVE-2003-1081 1Sun 2Solaris Sunos Apr 16, 2026 Sep 9, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 Aspppls for Solaris 8 allows local users to overwrite arbitrary files via a symlink attack on the .asppp.fifo temporary file.
CVE-2003-0669 1Sun 2Solaris Sunos Apr 16, 2026 Aug 27, 2003 N/A· v4 N/A· v3 1.2 LOW· v2 Unknown vulnerability in Solaris 2.6 through 9 causes a denial of service (system panic) via "a rare race condition" or an attack by local users.
CVE-2003-0609 1Sun 2Solaris Sunos Apr 16, 2026 Aug 27, 2003 N/A· v4 N/A· v3 7.2 HIGH· v2 Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long LD_PRELOAD environment variable.
CVE-2003-0466 7Apple FreebsdNetbsd+4 more 8Freebsd Mac Os XMac Os X Server+5 more Apr 16, 2026 Aug 27, 2003 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathname...Show more Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including (1) STOR, (2) RETR, (3) APPE, (4) DELE, (5) MKD, (6) RMD, (7) STOU, or (8) RNTO.Show less
CVE-2003-1063 1Sun 2Solaris Sunos Apr 16, 2026 Aug 20, 2003 N/A· v4 N/A· v3 7.5 HIGH· v2 The patches (1) 105693-13, (2) 108800-02, (3) 105694-13, and (4) 108801-02 for cachefs on Solaris 2.6 and 7 overwrite the inetd.conf file, which may silently reenable services and allow remote attackers to bypass the int...Show more The patches (1) 105693-13, (2) 108800-02, (3) 105694-13, and (4) 108801-02 for cachefs on Solaris 2.6 and 7 overwrite the inetd.conf file, which may silently reenable services and allow remote attackers to bypass the intended security policy.Show less
CVE-2003-1055 1Sun 2Solaris Sunos Apr 16, 2026 Jul 3, 2003 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in the nss_ldap.so.1 library for Sun Solaris 8 and 9 may allow local users to gain root access via a long hostname in an LDAP lookup.
CVE-2003-1067 1Sun 2Solaris Sunos Apr 16, 2026 Jun 19, 2003 N/A· v4 N/A· v3 7.2 HIGH· v2 Multiple buffer overflows in the (1) dbm_open function, as used in ndbm and dbm, and the (2) dbminit function in Solaris 2.6 through 9 allow local users to gain root privileges via long arguments to Xsun or other program...Show more Multiple buffer overflows in the (1) dbm_open function, as used in ndbm and dbm, and the (2) dbminit function in Solaris 2.6 through 9 allow local users to gain root privileges via long arguments to Xsun or other programs that use these functions.Show less
CVE-2003-1068 1Sun 2Solaris Sunos Apr 16, 2026 Jun 6, 2003 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4659277, a different vulnerability than CVE-2003-1082.
CVE-2003-1069 1Sun 2Solaris Sunos Apr 16, 2026 Jun 3, 2003 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Telnet daemon (in.telnetd) for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (CPU consumption by infinite loop).
CVE-2003-0201 6Apple CompaqHp+3 more 8Cifs 9000 Server Hp UxMac Os X+5 more Apr 16, 2026 May 5, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
CVE-2003-0196 5Compaq HpSamba+2 more 7Cifs 9000 Server Hp UxSamba+4 more Apr 16, 2026 May 5, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
CVE-2003-1072 1Sun 2Solaris Sunos Apr 16, 2026 Apr 28, 2003 N/A· v4 N/A· v3 2.1 LOW· v2 Memory leak in lofiadm in Solaris 8 allows local users to cause a denial of service (kernel memory consumption).
CVE-2003-1070 1Sun 2Solaris Sunos Apr 16, 2026 Apr 28, 2003 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unknown vulnerability in rpcbind for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (rpcbind crash).
CVE-2003-0161 4Compaq HpSendmail+1 more 9Hp Ux Hp Ux Series 700Hp Ux Series 800+6 more Apr 16, 2026 Apr 2, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misin...Show more The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337.Show less

Previous 1...131415...23 Next