CVE-2003-0027 – Solaris KCMS + TTDB Arbitrary File Read
https://notcve.org/view.php?id=CVE-2003-0027
Directory traversal vulnerability in Sun Kodak Color Management System (KCMS) library service daemon (kcms_server) allows remote attackers to read arbitrary files via the KCS_OPEN_PROFILE procedure. Vulnerabilidad de atravesamiento de directorios en el demonio servidor de Sun Kodak Color Management System (KMCS) (kcms_server) permite a atacantes remotos leer ficheros arbitrarios mediante el procedimiento KCS_OPEN_PROFILE • http://marc.info/?l=bugtraq&m=104326556329850&w=2 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/50104 http://www.entercept.com/news/uspr/01-22-03.asp http://www.kb.cert.org/vuls/id/850785 http://www.securityfocus.com/bid/6665 https://exchange.xforce.ibmcloud.com/vulnerabilities/11129 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A120 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A195 https: •
CVE-2003-1075
https://notcve.org/view.php?id=CVE-2003-1075
Unknown vulnerability in the FTP server (in.ftpd) for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (temporary FTP server hang), which affects other active mode FTP clients. • http://secunia.com/advisories/7968 http://sunsolve.sun.com/search/document.do?assetkey=1-26-50240-1 http://www.securityfocus.com/bid/6709 http://www.securitytracker.com/id?1005996 https://exchange.xforce.ibmcloud.com/vulnerabilities/11186 •
CVE-2003-1071 – Sun Solaris 2.5.1/2.6/7.0/8/9 Wall - Spoofed Message Origin
https://notcve.org/view.php?id=CVE-2003-1071
rpc.walld (wall daemon) for Solaris 2.6 through 9 allows local users to send messages to logged on users that appear to come from arbitrary user IDs by closing stderr before executing wall, then supplying a spoofed from header. • https://www.exploit-db.com/exploits/22120 http://secunia.com/advisories/7825 http://sunsolve.sun.com/search/document.do?assetkey=1-26-51980-1 http://www.kb.cert.org/vuls/id/944241 http://www.securityfocus.com/archive/1/305105 http://www.securityfocus.com/bid/6509 http://www.securitytracker.com/id?1005882 http://www.securitytracker.com/id?1006682 https://exchange.xforce.ibmcloud.com/vulnerabilities/11608 •
CVE-2002-1763
https://notcve.org/view.php?id=CVE-2002-1763
The dtscreen Sun Solaris 8 CDE screensaver crashes when the "Shift" and "Return" keys are pressed repeatedly and quickly, which allows local users to access the current session. • http://online.securityfocus.com/archive/1/277316 http://online.securityfocus.com/archive/1/277335 http://online.securityfocus.com/archive/1/277724 http://www.securityfocus.com/bid/5040 https://exchange.xforce.ibmcloud.com/vulnerabilities/9406 •
CVE-2002-2197
https://notcve.org/view.php?id=CVE-2002-2197
Unknown vulnerability in Sun Solaris 8.0 allows local users to cause a denial of service (kernel panic) via a program that uses /dev/poll, triggering a NULL pointer dereference. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F45300&zone_32=45300 http://www.iss.net/security_center/static/9489.php http://www.securityfocus.com/bid/5171 •