CVE-2001-0236 – Solaris 2.6/7.0/8 - snmpXdmid Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0236
Buffer overflow in Solaris snmpXdmid SNMP to DMI mapper daemon allows remote attackers to execute arbitrary commands via a long "indication" event. • https://www.exploit-db.com/exploits/20648 https://www.exploit-db.com/exploits/20649 http://marc.info/?l=bugtraq&m=98462536724454&w=2 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/207 http://www.cert.org/advisories/CA-2001-05.html http://www.ciac.org/ciac/bulletins/l-065.shtml http://www.securityfocus.com/bid/2417 https://exchange.xforce.ibmcloud.com/vulnerabilities/6245 •
CVE-2001-0190
https://notcve.org/view.php?id=CVE-2001-0190
Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0). • http://marc.info/?l=bugtraq&m=97983943716311&w=2 http://marc.info/?l=bugtraq&m=98028642319440&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/6224 •
CVE-2001-0115 – Solaris 7/8-beta - ARP Local Overflow
https://notcve.org/view.php?id=CVE-2001-0115
Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter. • https://www.exploit-db.com/exploits/250 http://marc.info/?l=bugtraq&m=97934312727101&w=2 http://marc.info/?l=bugtraq&m=97957435729702&w=2 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/200&type=0&nav=sec.sba http://www.securityfocus.com/bid/2193 https://exchange.xforce.ibmcloud.com/vulnerabilities/5928 •
CVE-2001-0124
https://notcve.org/view.php?id=CVE-2001-0124
Buffer overflow in exrecover in Solaris 2.6 and earlier possibly allows local users to gain privileges via a long command line argument. • http://marc.info/?l=bugtraq&m=97908386502156&w=2 http://www.securityfocus.com/bid/2179 https://exchange.xforce.ibmcloud.com/vulnerabilities/5913 •
CVE-2000-0844 – Immunix OS 6.2 - LC glibc format string
https://notcve.org/view.php?id=CVE-2000-0844
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/20187 https://www.exploit-db.com/exploits/209 https://www.exploit-db.com/exploits/215 https://www.exploit-db.com/exploits/249 https://www.exploit-db.com/exploits/20185 https://www.exploit-db.com/exploits/210 https://www.exploit-db.com/exploits/20188 https://www.exploit-db.com/exploits/20186 https://www.exploit-db.com/exploits/197 https://www.exploit-db.com/exploits/20189 https://www.exploit-db.com/exploits/20190 ftp: • CWE-264: Permissions, Privileges, and Access Controls •