Page 24 of 199 results (0.005 seconds)

CVSS: 7.5EPSS: 0%CPEs: 47EXPL: 0

mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html http://www.ciac.org/ciac/bulletins/p-049.shtml http://www.securityfocus.com/bid/9571 http://www.securitytracker.com/alerts/2004/Dec/1012414.html https://exchange.xforce.ibmcloud.com/vulnerabilities/18347 •

CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 0

Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4705891, a different vulnerability than CVE-2003-1068. • http://secunia.com/advisories/7892 http://sunsolve.sun.com/search/document.do?assetkey=1-26-50008-1 http://www.ciac.org/ciac/bulletins/n-105.shtml http://www.kb.cert.org/vuls/id/596748 http://www.securityfocus.com/bid/6639 http://www.securitytracker.com/id?1005935 https://exchange.xforce.ibmcloud.com/vulnerabilities/11083 •

CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 0

Unknown vulnerability in sendmail for Solaris 7, 8, and 9 allows local users to cause a denial of service (unknown impact) and possibly gain privileges via certain constructs in a .forward file. • http://secunia.com/advisories/8235 http://sunsolve.sun.com/search/document.do?assetkey=1-26-50904-1 http://www.ciac.org/ciac/bulletins/n-050.shtml http://www.securityfocus.com/bid/7033 http://www.securitytracker.com/id?1006234 https://exchange.xforce.ibmcloud.com/vulnerabilities/11496 •

CVSS: 5.0EPSS: 2%CPEs: 8EXPL: 0

Buffer overflow in the syslog daemon for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (syslogd crash) and possibly execute arbitrary code via long syslog UDP packets. • http://secunia.com/advisories/8944 http://sunsolve.sun.com/search/document.do?assetkey=1-26-55440-1 http://www.securityfocus.com/archive/1/324015 http://www.securityfocus.com/bid/7820 https://exchange.xforce.ibmcloud.com/vulnerabilities/12194 •

CVSS: 1.2EPSS: 0%CPEs: 10EXPL: 1

A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes place. • https://www.exploit-db.com/exploits/22203 http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0044.html http://isec.pl/vulnerabilities/isec-0008-sun-at.txt http://secunia.com/advisories/7960 http://sunsolve.sun.com/search/document.do?assetkey=1-26-50161-1 http://www.ciac.org/ciac/bulletins/n-070.shtml http://www.securityfocus.com/archive/1/308577 http://www.securityfocus.com/bid/6692 http://www.securityfocus.com/bid/6693 http://www.securitytracker.com/id?1005994&# •