Sun

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2002-1344 2Gnu Sun 2Cobalt Raq Xtr Wget Apr 16, 2026 Dec 18, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Directory traversal vulnerability in wget before 1.8.2-4 allows a remote FTP server to create or overwrite files as the wget user via filenames containing (1) /absolute/path or (2) .. (dot dot) sequences.
CVE-2002-1323 5Redhat Safe.pmSco+2 more 9Enterprise Linux IrixLinux+6 more Apr 16, 2026 Dec 11, 2002 N/A· v4 N/A· v3 4.6 MEDIUM· v2 Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successi...Show more Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls.Show less
CVE-2002-1317 4Hp SgiSun+1 more 5Hp Ux IrixSolaris+2 more Apr 16, 2026 Dec 11, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query.
CVE-2002-1587 1Sun 2Solaris Sunos Apr 16, 2026 Dec 4, 2002 N/A· v4 N/A· v3 2.1 LOW· v2 The libthread library (libthread.so.1) for Solaris 2.5.1 through 8 allows local users to cause a denial of service (hang) of an application that uses libthread by causing the application to wait for a certain mutex.
CVE-2002-1586 1Sun 2Solaris Sunos Apr 16, 2026 Dec 3, 2002 N/A· v4 N/A· v3 2.1 LOW· v2 Solaris 2.5.1 through 9 allows local users to cause a denial of service (kernel panic) by setting the sd_struiowrq variable in the struioget function to null, which triggers a null dereference.
CVE-2002-1588 1Sun 1Openwindows Apr 16, 2026 Nov 29, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Mailtool for OpenWindows 3.6, 3.6.1, and 3.6.2 allows remote attackers to cause a denial of service (mailtool segmentation violation and crash) via a malformed mail attachment.
CVE-2002-1585 1Sun 2Solaris Sunos Apr 16, 2026 Nov 8, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unknown vulnerability in Solaris 8 for Intel and Solaris 8 and 9 for SPARC allows remote attackers to cause a denial of service via certain packets that cause some network interfaces to stop responding to TCP traffic.
CVE-2002-1590 1Sun 2Solaris Sunos Apr 16, 2026 Oct 29, 2002 N/A· v4 N/A· v3 7.2 HIGH· v2 The Web-Based Enterprise Management (WBEM) packages (1) SUNWwbdoc, (2) SUNWwbcou, (3) SUNWwbdev and (4) SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with world or group write per...Show more The Web-Based Enterprise Management (WBEM) packages (1) SUNWwbdoc, (2) SUNWwbcou, (3) SUNWwbdev and (4) SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with world or group write permissions, which allows local users to gain root privileges or cause a denial of service.Show less
CVE-2002-1228 1Sun 2Solaris Sunos Apr 16, 2026 Oct 28, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unknown vulnerability in NFS on Solaris 2.5.1 through Solaris 9 allows an NFS client to cause a denial of service by killing the lockd daemon.
CVE-2002-1199 3Caldera ScoSun 4Openlinux OpenserverSolaris+1 more Apr 16, 2026 Oct 28, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.
CVE-2002-1589 1Sun 2Solaris Sunos Apr 16, 2026 Oct 24, 2002 N/A· v4 N/A· v3 2.1 LOW· v2 Unknown vulnerability in Solaris 8, when the 0x02 bit (aka TEST, KMF_DEADBEEF, or deadbeef) is set in the kmem_flags kernel parameter, allows local users to cause a denial of service (system panic).
CVE-2002-1042 2Netscape Sun 4Enterprise Server Iplanet Web ServerOne Application Server+1 more Apr 16, 2026 Oct 4, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via .....Show more Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter.Show less
CVE-2002-1034 1Sun 1I Runbook Apr 16, 2026 Oct 4, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 none.php for SunPS iRunbook 2.5.2 allows remote attackers to read arbitrary files via an absolute pathname in the argument.
CVE-2002-1033 1Sun 1I Runbook Apr 16, 2026 Oct 4, 2002 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Directory traversal vulnerability in none.php for SunPS iRunbook 2.5.2 allows remote attackers to read arbitrary files via a "..:" sequence (dot-dot variant) in the argument.
CVE-2002-0994 1Sun 1Sun Pci Ii Driver Apr 16, 2026 Oct 4, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 SunPCi II VNC uses a weak authentication scheme, which allows remote attackers to obtain the VNC password by sniffing the random byte challenge, which is used as the key for encrypted communications.
CVE-2002-0885 2Caldera Sun 3Openunix SunosUnixware Apr 16, 2026 Oct 4, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 Multiple buffer overflows in in.rarpd (ARP server) on Solaris, and possibly other operating systems including Caldera UnixWare and Open UNIX, allow remote attackers to execute arbitrary code, possibly via the functions (...Show more Multiple buffer overflows in in.rarpd (ARP server) on Solaris, and possibly other operating systems including Caldera UnixWare and Open UNIX, allow remote attackers to execute arbitrary code, possibly via the functions (1) syserr and (2) error.Show less
CVE-2002-0884 2Caldera Sun 3Openunix SunosUnixware Apr 16, 2026 Oct 4, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 Multiple format string vulnerabilities in in.rarpd (ARP server) on Solaris, Caldera UnixWare and Open UNIX, and possibly other operating systems, allows remote attackers to execute arbitrary code via format strings that...Show more Multiple format string vulnerabilities in in.rarpd (ARP server) on Solaris, Caldera UnixWare and Open UNIX, and possibly other operating systems, allows remote attackers to execute arbitrary code via format strings that are not properly handled in the functions (1) syserr and (2) error.Show less
CVE-2002-0679 6Caldera CompaqHp+3 more 8Aix DextopHp Ux+5 more Apr 16, 2026 Sep 5, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.
CVE-2002-0797 1Sun 2Solaris Sunos Apr 16, 2026 Aug 12, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in the MIB parsing component of mibiisa for Solaris 5.6 through 8 allows remote attackers to gain root privileges.
CVE-2002-0796 1Sun 2Solaris Sunos Apr 16, 2026 Aug 12, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 Format string vulnerability in the logging component of snmpdx for Solaris 5.6 through 8 allows remote attackers to gain root privileges.

Previous 1...656667...81 Next