CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 2CVE-2004-2686 – Sun Solaris 2.6/7.0/8/9 - vfs_getvfssw function Privilege Escalation
https://notcve.org/view.php?id=CVE-2004-2686
Directory traversal vulnerability in the vfs_getvfssw function in Solaris 2.6, 7, 8, and 9 allows local users to load arbitrary kernel modules via crafted (1) mount or (2) sysfs system calls. NOTE: this might be the same issue as CVE-2004-1767, but there are insufficient details to be sure. • https://www.exploit-db.com/exploits/23874 http://seclists.org/bugtraq/2004/Apr/0081.html http://securitytracker.com/id?1008833 http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2004-04/0297.html http://www.immunitysec.com/downloads/solaris_kernel_vfs.sxw.pdf http://www.securityfocus.com/bid/9962 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1381 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 0CVE-2004-1767
https://notcve.org/view.php?id=CVE-2004-1767
The kernel in Solaris 2.6, 7, 8, and 9 allows local users to gain privileges by loading arbitrary loadable kernel modules (LKM), possibly involving the modload function. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57479-1 http://www.kb.cert.org/vuls/id/702526 http://www.securityfocus.com/bid/9477 https://exchange.xforce.ibmcloud.com/vulnerabilities/14917 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4532 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.6EPSS: 0%CPEs: 8EXPL: 0CVE-2004-1359
https://notcve.org/view.php?id=CVE-2004-1359
Multiple buffer overflows in uucp for Sun Solaris 2.6, 7, 8, and 9 allow local users to execute arbitrary code as the uucp user. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57508-1 http://www.auscert.org.au/render.html?it=3935 http://www.securityfocus.com/bid/9837 https://exchange.xforce.ibmcloud.com/vulnerabilities/15425 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1127 •
CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 0CVE-2003-1082
https://notcve.org/view.php?id=CVE-2003-1082
Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4705891, a different vulnerability than CVE-2003-1068. • http://secunia.com/advisories/7892 http://sunsolve.sun.com/search/document.do?assetkey=1-26-50008-1 http://www.ciac.org/ciac/bulletins/n-105.shtml http://www.kb.cert.org/vuls/id/596748 http://www.securityfocus.com/bid/6639 http://www.securitytracker.com/id?1005935 https://exchange.xforce.ibmcloud.com/vulnerabilities/11083 •
CVSS: 5.0EPSS: 2%CPEs: 8EXPL: 0CVE-2003-1066
https://notcve.org/view.php?id=CVE-2003-1066
Buffer overflow in the syslog daemon for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (syslogd crash) and possibly execute arbitrary code via long syslog UDP packets. • http://secunia.com/advisories/8944 http://sunsolve.sun.com/search/document.do?assetkey=1-26-55440-1 http://www.securityfocus.com/archive/1/324015 http://www.securityfocus.com/bid/7820 https://exchange.xforce.ibmcloud.com/vulnerabilities/12194 •