CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2004-1767
https://notcve.org/view.php?id=CVE-2004-1767
31 Dec 2004 — The kernel in Solaris 2.6, 7, 8, and 9 allows local users to gain privileges by loading arbitrary loadable kernel modules (LKM), possibly involving the modload function. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57479-1 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 2CVE-2004-2686 – Sun Solaris 2.6/7.0/8/9 - vfs_getvfssw function Privilege Escalation
https://notcve.org/view.php?id=CVE-2004-2686
31 Dec 2004 — Directory traversal vulnerability in the vfs_getvfssw function in Solaris 2.6, 7, 8, and 9 allows local users to load arbitrary kernel modules via crafted (1) mount or (2) sysfs system calls. NOTE: this might be the same issue as CVE-2004-1767, but there are insufficient details to be sure. • https://www.exploit-db.com/exploits/23874 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2004-1359
https://notcve.org/view.php?id=CVE-2004-1359
04 Mar 2004 — Multiple buffer overflows in uucp for Sun Solaris 2.6, 7, 8, and 9 allow local users to execute arbitrary code as the uucp user. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57508-1 •
CVSS: 9.8EPSS: 2%CPEs: 8EXPL: 0CVE-2003-1066
https://notcve.org/view.php?id=CVE-2003-1066
31 Dec 2003 — Buffer overflow in the syslog daemon for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (syslogd crash) and possibly execute arbitrary code via long syslog UDP packets. • http://secunia.com/advisories/8944 •
CVSS: 4.7EPSS: 0%CPEs: 10EXPL: 1CVE-2003-1073 – Sun Solaris 2.5/2.6/7.0/8/9 AT Command - Arbitrary File Deletion
https://notcve.org/view.php?id=CVE-2003-1073
31 Dec 2003 — A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes place. • https://www.exploit-db.com/exploits/22203 •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2003-1082
https://notcve.org/view.php?id=CVE-2003-1082
31 Dec 2003 — Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4705891, a different vulnerability than CVE-2003-1068. • http://secunia.com/advisories/7892 •
CVSS: 7.1EPSS: 0%CPEs: 34EXPL: 0CVE-2003-1437
https://notcve.org/view.php?id=CVE-2003-1437
31 Dec 2003 — BEA WebLogic Express and WebLogic Server 7.0 and 7.0.0.1, stores passwords in plaintext when a keystore is used to store a private key or trust certificate authorities, which allows local users to gain access. • http://dev.bea.com/resourcelibrary/advisoriesnotifications/BEA03-25.jsp •
CVSS: 5.5EPSS: 0%CPEs: 12EXPL: 0CVE-2003-1563
https://notcve.org/view.php?id=CVE-2003-1563
31 Dec 2003 — Sun Cluster 2.2 through 3.2 for Oracle Parallel Server / Real Application Clusters (OPS/RAC) allows local users to cause a denial of service (cluster node panic or abort) by launching a daemon listening on a TCP port that would otherwise be used by the Distributed Lock Manager (DLM), possibly involving this daemon responding in a manner that spoofs a cluster reconfiguration. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-101393-1 •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2003-0999
https://notcve.org/view.php?id=CVE-2003-0999
17 Dec 2003 — Unknown multiple vulnerabilities in (1) lpstat and (2) the libprint library in Solaris 2.6 through 9 may allow attackers to execute arbitrary code or read or write arbitrary files. Múltiples vulnerabilidades desconocidas en lpstat y la librería libprint en Solaris 2.6 a 9 puede permitir a atacantes ejecutar código arbitrario o leer o escribir ficheros arbitrarios. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57451 •
CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 0CVE-2003-1056
https://notcve.org/view.php?id=CVE-2003-1056
11 Dec 2003 — The ed editor for Sun Solaris 2.6, 7, and 8 allows local users to create or overwrite arbitrary files via a symlink attack on temporary files. • http://secunia.com/advisories/10411 •