CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 2CVE-2004-2686 – Sun Solaris 2.6/7.0/8/9 - vfs_getvfssw function Privilege Escalation
https://notcve.org/view.php?id=CVE-2004-2686
31 Dec 2004 — Directory traversal vulnerability in the vfs_getvfssw function in Solaris 2.6, 7, 8, and 9 allows local users to load arbitrary kernel modules via crafted (1) mount or (2) sysfs system calls. NOTE: this might be the same issue as CVE-2004-1767, but there are insufficient details to be sure. • https://www.exploit-db.com/exploits/23874 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 8.8EPSS: 5%CPEs: 68EXPL: 0CVE-2004-1307
https://notcve.org/view.php?id=CVE-2004-1307
21 Dec 2004 — Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow. • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html •
CVSS: 10.0EPSS: 14%CPEs: 6EXPL: 0CVE-2004-1351
https://notcve.org/view.php?id=CVE-2004-1351
07 Dec 2004 — Unknown vulnerability in the rwho daemon (in.rwhod) for Solaris 7 through 9 allows remote attackers to execute arbitrary code. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57659-1&searchclause=%22category:security%22%20%22availability%2C%20security%22 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2004-1352
https://notcve.org/view.php?id=CVE-2004-1352
01 Dec 2004 — Buffer overflow in the ping daemon of Sun Solaris 7 through 9 may allow local users to execute arbitrary code. • http://secunia.com/advisories/13340 •
CVSS: 7.5EPSS: 3%CPEs: 7EXPL: 0CVE-2004-1347
https://notcve.org/view.php?id=CVE-2004-1347
10 Aug 2004 — X Display Manager (XDM) on Solaris 8 allows remote attackers to cause a denial of service (XDM crash) via an invalid X Display Manager Control Protocol (XDMCP) request. • http://secunia.com/advisories/12257 •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2004-0654
https://notcve.org/view.php?id=CVE-2004-0654
13 Jul 2004 — Unknown vulnerability in the Basic Security Module (BSM), when configured to audit either the Administrative (ad) or the System-Wide Administration (as) audit class in Solaris 7, 8, and 9, allows local users to cause a denial of service (kernel panic). Vulnerabilidad desconocida en el Basic Security Module (BSM), cuando se configura para auditar las clases Administrativa (ad) o de todo el sistema (as) en Solaris 7,8 y 9, permite a usuarios locales causar una denegación de servicio (caída del kenel). • http://secunia.com/advisories/11930 •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2004-1359
https://notcve.org/view.php?id=CVE-2004-1359
04 Mar 2004 — Multiple buffer overflows in uucp for Sun Solaris 2.6, 7, 8, and 9 allow local users to execute arbitrary code as the uucp user. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57508-1 •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2004-1360
https://notcve.org/view.php?id=CVE-2004-1360
27 Feb 2004 — Unknown vulnerability in conv_fix in Sun Solaris 7 through 9, when invoked by conv_lpd, allows local users to overwrite arbitrary files. • http://secunia.com/advisories/10991 •
CVSS: 9.8EPSS: 2%CPEs: 8EXPL: 0CVE-2003-1066
https://notcve.org/view.php?id=CVE-2003-1066
31 Dec 2003 — Buffer overflow in the syslog daemon for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (syslogd crash) and possibly execute arbitrary code via long syslog UDP packets. • http://secunia.com/advisories/8944 •
CVSS: 4.7EPSS: 0%CPEs: 10EXPL: 1CVE-2003-1073 – Sun Solaris 2.5/2.6/7.0/8/9 AT Command - Arbitrary File Deletion
https://notcve.org/view.php?id=CVE-2003-1073
31 Dec 2003 — A race condition in the at command for Solaris 2.6 through 9 allows local users to delete arbitrary files via the -r argument with .. (dot dot) sequences in the job name, then modifying the directory structure after at checks permissions to delete the file and before the deletion actually takes place. • https://www.exploit-db.com/exploits/22203 •