CVSS: 7.5EPSS: 4%CPEs: 68EXPL: 0CVE-2004-1307
https://notcve.org/view.php?id=CVE-2004-1307
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow. • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html http://sunsolve.sun.com/search/document.do?assetkey=1-26-101677-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201072-1 http://www.idefense.com/application/poi/display?id=173&type=vulnerabilities&flashstatus=true http://www.kb.cert.org/vuls/id/539110 http://www.us-cert.gov/cas/techalerts/TA05-136A.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11175 https: •
CVSS: 10.0EPSS: 29%CPEs: 6EXPL: 0CVE-2004-1351
https://notcve.org/view.php?id=CVE-2004-1351
Unknown vulnerability in the rwho daemon (in.rwhod) for Solaris 7 through 9 allows remote attackers to execute arbitrary code. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57659-1&searchclause=%22category:security%22%20%22availability%2C%20security%22 http://www.auscert.org.au/render.html?it=4597 http://www.ciac.org/ciac/bulletins/p-050.shtml http://www.securityfocus.com/bid/11840 https://exchange.xforce.ibmcloud.com/vulnerabilities/18385 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A592 •
CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 0CVE-2004-1352
https://notcve.org/view.php?id=CVE-2004-1352
Buffer overflow in the ping daemon of Sun Solaris 7 through 9 may allow local users to execute arbitrary code. • http://secunia.com/advisories/13340 http://securitytracker.com/id?1012368 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57675-1&searchclause=%22category:security%22%20%22availability%2C%20security%22 http://www.auscert.org.au/render.html?it=4586 http://www.ciac.org/ciac/bulletins/p-045.shtml http://www.osvdb.org/displayvuln.php?osvdb_id=12168 http://www.securityfocus.com/bid/11782 https://exchange.xforce.ibmcloud.com/vulnerabilities/18310 https://oval.cisecurity.org/repositor •
CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2004-1353
https://notcve.org/view.php?id=CVE-2004-1353
Unknown vulnerability in LDAP on Sun Solaris 8 and 9, when using Role Based Access Control (RBAC), allows local users to execute certain commands with additional privileges. • http://secunia.com/advisories/12873 http://securitytracker.com/id?1011789 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57657-1&searchclause=%22category:security%22%20%22availability%2C%20security%22 http://www.auscert.org.au/render.html?it=4482 http://www.ciac.org/ciac/bulletins/p-017.shtml http://www.osvdb.org/displayvuln.php?osvdb_id=10939 http://www.securityfocus.com/bid/11459 https://exchange.xforce.ibmcloud.com/vulnerabilities/17757 https://oval.cisecurity.org/repositor •
CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 0CVE-2004-1349
https://notcve.org/view.php?id=CVE-2004-1349
gzip before 1.3 in Solaris 8, when called with the -f or -force flags, will change the permissions of files that are hard linked to the target files, which allows local users to view or modify these files. • http://secunia.com/advisories/12744 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57600-1&searchclause=security http://www.kb.cert.org/vuls/id/635998 http://www.securityfocus.com/bid/11318 https://exchange.xforce.ibmcloud.com/vulnerabilities/17577 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1654 • CWE-269: Improper Privilege Management •