Filtered by vendor Sun
Subscriptions
Total
1712 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2000-0210 | 1 Sun | 1 Workshop | 2024-08-08 | N/A |
The lit program in Sun Flex License Manager (FlexLM) follows symlinks, which allows local users to modify arbitrary files. | ||||
CVE-2000-0164 | 1 Sun | 1 Solaris Isp Server | 2024-08-08 | N/A |
The installation of Sun Internet Mail Server (SIMS) creates a world-readable file that allows local users to obtain passwords. | ||||
CVE-2000-0174 | 1 Sun | 1 Staroffice | 2024-08-08 | N/A |
StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack. | ||||
CVE-2000-0175 | 1 Sun | 1 Staroffice | 2024-08-08 | N/A |
Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command. | ||||
CVE-2000-0055 | 1 Sun | 2 Solaris, Sunos | 2024-08-08 | N/A |
Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option. | ||||
CVE-2000-0117 | 1 Sun | 3 Cobalt Raq, Cobalt Raq 2, Cobalt Raq 3i | 2024-08-08 | N/A |
The siteUserMod.cgi program in Cobalt RaQ2 servers allows any Site Administrator to modify passwords for other users, site administrators, and possibly admin (root). | ||||
CVE-2000-0118 | 2 Redhat, Sun | 3 Linux, Solaris, Sunos | 2024-08-08 | N/A |
The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing. | ||||
CVE-2000-0069 | 1 Sun | 1 Solstice Backup | 2024-08-08 | N/A |
The recover program in Solstice Backup allows local users to restore sensitive files. | ||||
CVE-2000-0032 | 1 Sun | 2 Solaris, Sunos | 2024-08-08 | N/A |
Solaris dmi_cmd allows local users to crash the dmispd daemon by adding a malformed file to the /var/dmi/db database. | ||||
CVE-2001-1480 | 2 Apple, Sun | 4 Mac Os Runtime For Java, Jdk, Jre and 1 more | 2024-08-08 | N/A |
Java Runtime Environment (JRE) and SDK 1.2 through 1.3.0_04 allows untrusted applets to access the system clipboard. | ||||
CVE-2001-1583 | 1 Sun | 1 Sunos | 2024-08-08 | N/A |
lpd daemon (in.lpd) in Solaris 8 and earlier allows remote attackers to execute arbitrary commands via a job request with a crafted control file that is not properly handled when lpd invokes a mail program. NOTE: this might be the same vulnerability as CVE-2000-1220. | ||||
CVE-2000-0030 | 1 Sun | 2 Solaris, Sunos | 2024-08-08 | N/A |
Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database. | ||||
CVE-2001-1503 | 1 Sun | 2 Solaris, Sunos | 2024-08-08 | N/A |
The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host. | ||||
CVE-2001-1479 | 1 Sun | 1 Management\+center | 2024-08-08 | N/A |
smcboot in Sun SMC (Sun Management Center) 2.0 in Solaris 8 allows local users to delete arbitrary files via a symlink attack on /tmp/smc$SMC_PORT. | ||||
CVE-2001-1414 | 1 Sun | 2 Solaris, Sunos | 2024-08-08 | N/A |
The Basic Security Module (BSM) for Solaris 2.5.1, 2.6, 7, and 8 does not log anonymous FTP access, which allows remote attackers to hide their activities, possibly when certain BSM audit files are not present under the FTP root. | ||||
CVE-2001-1328 | 1 Sun | 1 Sunos | 2024-08-08 | N/A |
Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code. | ||||
CVE-2001-1307 | 1 Sun | 1 Iplanet Directory Server | 2024-08-08 | N/A |
Buffer overflows in iPlanet Directory Server 4.1.4 and earlier (LDAP) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite. | ||||
CVE-2001-1308 | 1 Sun | 1 Iplanet Directory Server | 2024-08-08 | N/A |
Format string vulnerabilities in iPlanet Directory Server 4.1.4 and earlier (LDAP) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, as demonstrated by the PROTOS LDAPv3 test suite. | ||||
CVE-2001-1306 | 1 Sun | 1 Iplanet Directory Server | 2024-08-08 | N/A |
iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstrated by the PROTOS LDAPv3 test suite. | ||||
CVE-2001-1244 | 7 Freebsd, Hp, Linux and 4 more | 9 Freebsd, Hp-ux, Vvos and 6 more | 2024-08-08 | N/A |
Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting large amounts of data, which generates more packets with less TCP-level data that amplify network traffic and consume more server CPU to process. |