CVSS: 10.0EPSS: 0%CPEs: 74EXPL: 13CVE-2000-0844 – Immunix OS 6.2 - LC glibc format string
https://notcve.org/view.php?id=CVE-2000-0844
14 Nov 2000 — Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/20187 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 2CVE-2000-0471 – Solaris 2.5/2.6/7.0/8 ufsrestore - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0471
14 Jun 2000 — Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname. • https://www.exploit-db.com/exploits/20014 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-1999-1102
https://notcve.org/view.php?id=CVE-1999-1102
31 Dec 1999 — lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times. • http://ciac.llnl.gov/ciac/bulletins/e-25.shtml •
CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-1999-1584
https://notcve.org/view.php?id=CVE-1999-1584
31 Dec 1999 — Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586. • http://sunsolve.sun.com/search/document.do?assetkey=1-22-00124-1 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1585
https://notcve.org/view.php?id=CVE-1999-1585
31 Dec 1999 — The (1) rcS and (2) mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges. • http://sunsolve.sun.com/search/document.do?assetkey=1-22-00124-1 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-1999-1586
https://notcve.org/view.php?id=CVE-1999-1586
31 Dec 1999 — loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584. • http://www.cert.org/advisories/CA-1995-12.html •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-1999-1592
https://notcve.org/view.php?id=CVE-1999-1592
31 Dec 1999 — Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129. • http://sunsolve.sun.com/search/document.do?assetkey=1-22-00159-1 •
CVSS: 9.8EPSS: 7%CPEs: 33EXPL: 0CVE-1999-0687
https://notcve.org/view.php?id=CVE-1999-0687
13 Sep 1999 — The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192 •
CVSS: 7.2EPSS: 0%CPEs: 27EXPL: 2CVE-1999-0674 – NetBSD 1.4 / OpenBSD 2.5 / Solaris 7.0 - 'profil' Modify The Internal Data Space
https://notcve.org/view.php?id=CVE-1999-0674
09 Aug 1999 — The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve. • https://www.exploit-db.com/exploits/19447 •
CVSS: 10.0EPSS: 5%CPEs: 9EXPL: 2CVE-1999-0696 – Caldera OpenUnix 8.0/UnixWare 7.1.1 / HP HP-UX 11.0 / Solaris 7.0 / SunOS 4.1.4 - rpc.cmsd Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0696
01 Jul 1999 — Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd). • https://www.exploit-db.com/exploits/19420 •