Solaris

solaris

Vendor: Sun • 450 CVEs

CVEs (450)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2002-1323 5Redhat Safe.pmSco+2 more 9Enterprise Linux IrixLinux+6 more Apr 16, 2026 Dec 11, 2002 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successi...Show more Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls.Show less
CVE-2002-1317 4Hp SgiSun+1 more 5Hp Ux IrixSolaris+2 more Apr 16, 2026 Dec 11, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query.
CVE-2002-1587 1Sun 2Solaris Sunos Apr 16, 2026 Dec 4, 2002 N/A· v4 N/A· v3 2.1 LOW· v2 The libthread library (libthread.so.1) for Solaris 2.5.1 through 8 allows local users to cause a denial of service (hang) of an application that uses libthread by causing the application to wait for a certain mutex.
CVE-2002-1586 1Sun 2Solaris Sunos Apr 16, 2026 Dec 3, 2002 N/A· v4 N/A· v3 2.1 LOW· v2 Solaris 2.5.1 through 9 allows local users to cause a denial of service (kernel panic) by setting the sd_struiowrq variable in the struioget function to null, which triggers a null dereference.
CVE-2002-1585 1Sun 2Solaris Sunos Apr 16, 2026 Nov 8, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unknown vulnerability in Solaris 8 for Intel and Solaris 8 and 9 for SPARC allows remote attackers to cause a denial of service via certain packets that cause some network interfaces to stop responding to TCP traffic.
CVE-2002-1590 1Sun 2Solaris Sunos Apr 16, 2026 Oct 29, 2002 N/A· v4 N/A· v3 7.2 HIGH· v2 The Web-Based Enterprise Management (WBEM) packages (1) SUNWwbdoc, (2) SUNWwbcou, (3) SUNWwbdev and (4) SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with world or group write per...Show more The Web-Based Enterprise Management (WBEM) packages (1) SUNWwbdoc, (2) SUNWwbcou, (3) SUNWwbdev and (4) SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with world or group write permissions, which allows local users to gain root privileges or cause a denial of service.Show less
CVE-2002-1228 1Sun 2Solaris Sunos Apr 16, 2026 Oct 28, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unknown vulnerability in NFS on Solaris 2.5.1 through Solaris 9 allows an NFS client to cause a denial of service by killing the lockd daemon.
CVE-2002-1199 3Caldera ScoSun 4Openlinux OpenserverSolaris+1 more Apr 16, 2026 Oct 28, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.
CVE-2002-1589 1Sun 2Solaris Sunos Apr 16, 2026 Oct 24, 2002 N/A· v4 N/A· v3 2.1 LOW· v2 Unknown vulnerability in Solaris 8, when the 0x02 bit (aka TEST, KMF_DEADBEEF, or deadbeef) is set in the kmem_flags kernel parameter, allows local users to cause a denial of service (system panic).
CVE-2002-0679 6Caldera CompaqHp+3 more 8Aix DextopHp Ux+5 more Apr 16, 2026 Sep 5, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.
CVE-2002-0797 1Sun 2Solaris Sunos Apr 16, 2026 Aug 12, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in the MIB parsing component of mibiisa for Solaris 5.6 through 8 allows remote attackers to gain root privileges.
CVE-2002-0796 1Sun 2Solaris Sunos Apr 16, 2026 Aug 12, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 Format string vulnerability in the logging component of snmpdx for Solaris 5.6 through 8 allows remote attackers to gain root privileges.
CVE-2002-0391 4Freebsd MicrosoftOpenbsd+1 more 7Freebsd OpenbsdSolaris+4 more Apr 16, 2026 Aug 12, 2002 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large num...Show more Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on SunRPC including dietlibc, allows remote attackers to execute arbitrary code by passing a large number of arguments to xdr_array through RPC services such as rpc.cmsd and dmispd.Show less
CVE-2002-0436 1Sun 2Solaris Sunos Apr 16, 2026 Jul 26, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 sscd_suncourier.pl CGI script in the Sun Sunsolve CD pack allows remote attackers to execute arbitrary commands via shell metacharacters in the email address parameter.
CVE-2002-0678 7Caldera CompaqHp+4 more 9Aix DextopHp Ux+6 more Apr 16, 2026 Jul 23, 2002 N/A· v4 N/A· v3 7.2 HIGH· v2 CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.
CVE-2002-0677 7Caldera CompaqHp+4 more 9Aix DextopHp Ux+6 more Apr 16, 2026 Jul 23, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is...Show more CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.Show less
CVE-2002-0573 1Sun 2Solaris Sunos Apr 16, 2026 Jul 3, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 Format string vulnerability in RPC wall daemon (rpc.rwalld) for Solaris 2.5.1 through 8 allows remote attackers to execute arbitrary code via format strings in a message that is not properly provided to the syslog functi...Show more Format string vulnerability in RPC wall daemon (rpc.rwalld) for Solaris 2.5.1 through 8 allows remote attackers to execute arbitrary code via format strings in a message that is not properly provided to the syslog function when the wall command cannot be executed.Show less
CVE-2002-0572 3Freebsd OpenbsdSun 4Freebsd OpenbsdSolaris+1 more Apr 16, 2026 Jul 3, 2002 N/A· v4 N/A· v3 7.2 HIGH· v2 FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standar...Show more FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standard error), which may then be reused by a called setuid process that intended to perform I/O on normal files.Show less
CVE-2002-0033 1Sun 2Solaris Sunos Apr 16, 2026 May 29, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name.
CVE-2002-0158 1Sun 2Solaris Sunos Apr 16, 2026 Apr 2, 2002 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in Xsun on Solaris 2.6 through 8 allows local users to gain root privileges via a long -co (color database) command line argument.

Previous 1...151617...23 Next