CVSS: 5.0EPSS: 96%CPEs: 9EXPL: 2CVE-2005-4797 – Solaris LPD Arbitrary File Delete
https://notcve.org/view.php?id=CVE-2005-4797
Directory traversal vulnerability in printd line printer daemon (lpd) in Solaris 7 through 10 allows remote attackers to delete arbitrary files via ".." sequences in an "Unlink data file" command. • http://downloads.securityfocus.com/vulnerabilities/exploits/solaris_lpd_unlink.pm http://secunia.com/advisories/16367 http://securitytracker.com/id?1014635 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101842-1 http://www.ciac.org/ciac/bulletins/p-280.shtml http://www.osvdb.org/18650 http://www.securityfocus.com/bid/14510 http://www.vupen.com/english/advisories/2005/1342 https://exchange.xforce.ibmcloud.com/vulnerabilities/21773 •
CVSS: 3.6EPSS: 0%CPEs: 14EXPL: 0CVE-2005-4796
https://notcve.org/view.php?id=CVE-2005-4796
Unspecified vulnerability in the XView library (libxview.so) in Solaris 2.5 to 10 allows local users to corrupt files via unknown vectors related to the handling of the clipboard selection while an XView application exits. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-100881-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-27525-1 http://www.ciac.org/ciac/bulletins/p-264.shtml http://www.osvdb.org/18809 http://www.securityfocus.com/bid/13016 •
CVSS: 7.2EPSS: 0%CPEs: 5EXPL: 5CVE-2005-2072 – Solaris 9/10 - 'ld.so' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-2072
The runtime linker (ld.so) in Solaris 8, 9, and 10 trusts the LD_AUDIT environment variable in setuid or setgid programs, which allows local users to gain privileges by (1) modifying LD_AUDIT to reference malicious code and possibly (2) using a long value for LD_AUDIT. • https://www.exploit-db.com/exploits/1073 https://www.exploit-db.com/exploits/1074 http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034730.html http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034731.html http://lists.grok.org.uk/pipermail/full-disclosure/2005-June/034738.html http://secunia.com/advisories/15841 http://securitytracker.com/id?1014537 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101794-1 http://www.opensolaris.org/jive/thread • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 2.1EPSS: 0%CPEs: 6EXPL: 0CVE-2005-2032
https://notcve.org/view.php?id=CVE-2005-2032
Unknown vulnerability in lpadmin on Sun Solaris 7, 8, and 9 allows local users to overwrite arbitrary files. • http://secunia.com/advisories/15723 http://securitytracker.com/id?1014218 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101768-1 http://www.securityfocus.com/bid/13968 •
CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0CVE-2005-1591
https://notcve.org/view.php?id=CVE-2005-1591
Unknown vulnerability in NIS+ on Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (rpc.nisd disabled and NIS+ unavailable) via unknown vectors. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57780-1 http://www.vupen.com/english/advisories/2005/0492 •