Page 3 of 49 results (0.003 seconds)

CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0

loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584. • http://www.cert.org/advisories/CA-1995-12.html http://www.ciac.org/ciac/bulletins/g-02.shtml https://exchange.xforce.ibmcloud.com/vulnerabilities/498 •

CVSS: 7.5EPSS: 1%CPEs: 33EXPL: 0

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192 http://www.ciac.org/ciac/bulletins/k-001.shtml http://www.securityfocus.com/bid/637 http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103 •

CVSS: 10.0EPSS: 0%CPEs: 9EXPL: 2

Buffer overflow in CDE Calendar Manager Service Daemon (rpc.cmsd). • https://www.exploit-db.com/exploits/19420 https://www.exploit-db.com/exploits/19421 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/188 http://www.ciac.org/ciac/bulletins/j-051.shtml http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9908-102 •

CVSS: 7.2EPSS: 0%CPEs: 30EXPL: 1

The Red Hat Linux su program does not log failed password guesses if the su process is killed before it times out, which allows local attackers to conduct brute force password guessing. • https://www.exploit-db.com/exploits/19255 http://marc.info/?l=bugtraq&m=94935300520617&w=2 •

CVSS: 2.1EPSS: 0%CPEs: 6EXPL: 0

cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fpatches%2F100452&zone_32=10045%2A%20 https://exchange.xforce.ibmcloud.com/vulnerabilities/7482 •