CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2005-1591
https://notcve.org/view.php?id=CVE-2005-1591
16 May 2005 — Unknown vulnerability in NIS+ on Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (rpc.nisd disabled and NIS+ unavailable) via unknown vectors. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57780-1 •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2005-1518
https://notcve.org/view.php?id=CVE-2005-1518
11 May 2005 — Unknown vulnerability in Solaris 7 through 9, when using Federated Naming Services (FNS), autofs, and FNS X.500 configuration, allows local users to cause a denial of service (automountd crash) when "accessing" /xfn/_x500. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57786-1 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2005-0816
https://notcve.org/view.php?id=CVE-2005-0816
20 Mar 2005 — Buffer overflow in newgrp in Solaris 7 through 9 allows local users to gain root privileges. • http://securitytracker.com/id?1013462 •
CVSS: 5.6EPSS: 0%CPEs: 121EXPL: 0CVE-2005-0109
https://notcve.org/view.php?id=CVE-2005-0109
05 Mar 2005 — Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.24/SCOSA-2005.24.txt •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2004-1767
https://notcve.org/view.php?id=CVE-2004-1767
31 Dec 2004 — The kernel in Solaris 2.6, 7, 8, and 9 allows local users to gain privileges by loading arbitrary loadable kernel modules (LKM), possibly involving the modload function. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57479-1 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.1EPSS: 0%CPEs: 6EXPL: 0CVE-2004-2306
https://notcve.org/view.php?id=CVE-2004-2306
31 Dec 2004 — Sun Solaris 7 through 9, when Basic Security Module (BSM) is enabled and the SUNWscpu package has been removed as a result of security hardening, disables mail alerts from the audit_warn script, which might allow attackers to escape detection. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57483-1 •
CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 2CVE-2004-2686 – Sun Solaris 2.6/7.0/8/9 - vfs_getvfssw function Privilege Escalation
https://notcve.org/view.php?id=CVE-2004-2686
31 Dec 2004 — Directory traversal vulnerability in the vfs_getvfssw function in Solaris 2.6, 7, 8, and 9 allows local users to load arbitrary kernel modules via crafted (1) mount or (2) sysfs system calls. NOTE: this might be the same issue as CVE-2004-1767, but there are insufficient details to be sure. • https://www.exploit-db.com/exploits/23874 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.8EPSS: 5%CPEs: 68EXPL: 0CVE-2004-1307
https://notcve.org/view.php?id=CVE-2004-1307
21 Dec 2004 — Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow. • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html •
CVSS: 10.0EPSS: 14%CPEs: 6EXPL: 0CVE-2004-1351
https://notcve.org/view.php?id=CVE-2004-1351
07 Dec 2004 — Unknown vulnerability in the rwho daemon (in.rwhod) for Solaris 7 through 9 allows remote attackers to execute arbitrary code. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57659-1&searchclause=%22category:security%22%20%22availability%2C%20security%22 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2004-1352
https://notcve.org/view.php?id=CVE-2004-1352
01 Dec 2004 — Buffer overflow in the ping daemon of Sun Solaris 7 through 9 may allow local users to execute arbitrary code. • http://secunia.com/advisories/13340 •