CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2001-0190
https://notcve.org/view.php?id=CVE-2001-0190
26 Mar 2001 — Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0). • http://marc.info/?l=bugtraq&m=97983943716311&w=2 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 1CVE-1999-1102
https://notcve.org/view.php?id=CVE-1999-1102
31 Dec 1999 — lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times. • http://ciac.llnl.gov/ciac/bulletins/e-25.shtml •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-1999-1192
https://notcve.org/view.php?id=CVE-1999-1192
24 Jun 1997 — Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/143 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 3CVE-1999-1191 – Solaris 2.5.0/2.5.1 ps / chkey - Data Buffer
https://notcve.org/view.php?id=CVE-1999-1191
19 May 1997 — Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. • https://www.exploit-db.com/exploits/332 •
CVSS: 10.0EPSS: 0%CPEs: 20EXPL: 0CVE-1999-0165
https://notcve.org/view.php?id=CVE-1999-0165
01 Mar 1997 — NFS cache poisoning. • https://www.cve.org/CVERecord?id=CVE-1999-0165 •
CVSS: 9.1EPSS: 0%CPEs: 6EXPL: 0CVE-1999-0143
https://notcve.org/view.php?id=CVE-1999-0143
21 Feb 1996 — Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0143 •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-1999-1137
https://notcve.org/view.php?id=CVE-1999-1137
01 Oct 1993 — The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/122&type=0&nav=sec.sba •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-1999-1318
https://notcve.org/view.php?id=CVE-1999-1318
17 Sep 1993 — /usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fpatches%2F100630&zone_32=112193%2A%20 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1142
https://notcve.org/view.php?id=CVE-1999-1142
27 May 1992 — SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/116 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1211
https://notcve.org/view.php?id=CVE-1999-1211
27 Mar 1991 — Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges. • http://www.cert.org/advisories/CA-1991-02.html •