CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2004-1394
https://notcve.org/view.php?id=CVE-2004-1394
31 Dec 2004 — The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the exec_attr database, which may allow local users with custom rights profiles to execute profile commands with additional privileges. • http://secunia.com/advisories/10755 •
CVSS: 8.8EPSS: 8%CPEs: 68EXPL: 0CVE-2004-1307
https://notcve.org/view.php?id=CVE-2004-1307
21 Dec 2004 — Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow. • http://lists.apple.com/archives/security-announce/2005/May/msg00001.html •
CVSS: 10.0EPSS: 34%CPEs: 6EXPL: 0CVE-2004-1351
https://notcve.org/view.php?id=CVE-2004-1351
07 Dec 2004 — Unknown vulnerability in the rwho daemon (in.rwhod) for Solaris 7 through 9 allows remote attackers to execute arbitrary code. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-57659-1&searchclause=%22category:security%22%20%22availability%2C%20security%22 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2004-1352
https://notcve.org/view.php?id=CVE-2004-1352
01 Dec 2004 — Buffer overflow in the ping daemon of Sun Solaris 7 through 9 may allow local users to execute arbitrary code. • http://secunia.com/advisories/13340 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2004-1353
https://notcve.org/view.php?id=CVE-2004-1353
19 Oct 2004 — Unknown vulnerability in LDAP on Sun Solaris 8 and 9, when using Role Based Access Control (RBAC), allows local users to execute certain commands with additional privileges. • http://secunia.com/advisories/12873 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2004-1349
https://notcve.org/view.php?id=CVE-2004-1349
04 Oct 2004 — gzip before 1.3 in Solaris 8, when called with the -f or -force flags, will change the permissions of files that are hard linked to the target files, which allows local users to view or modify these files. • http://secunia.com/advisories/12744 • CWE-269: Improper Privilege Management •
CVSS: 7.5EPSS: 2%CPEs: 2EXPL: 0CVE-2004-1348
https://notcve.org/view.php?id=CVE-2004-1348
06 Sep 2004 — Unknown vulnerability in in.named on Solaris 8 allows remote attackers to cause a denial of service (process crash). • http://secunia.com/advisories/12470 •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2004-0800
https://notcve.org/view.php?id=CVE-2004-0800
24 Aug 2004 — Format string vulnerability in CDE Mailer (dtmail) on Solaris 8 and 9 allows local users to gain privileges via format strings in the argv[0] value. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57627 •
CVSS: 7.5EPSS: 2%CPEs: 7EXPL: 0CVE-2004-1347
https://notcve.org/view.php?id=CVE-2004-1347
10 Aug 2004 — X Display Manager (XDM) on Solaris 8 allows remote attackers to cause a denial of service (XDM crash) via an invalid X Display Manager Control Protocol (XDMCP) request. • http://secunia.com/advisories/12257 •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2004-0654
https://notcve.org/view.php?id=CVE-2004-0654
13 Jul 2004 — Unknown vulnerability in the Basic Security Module (BSM), when configured to audit either the Administrative (ad) or the System-Wide Administration (as) audit class in Solaris 7, 8, and 9, allows local users to cause a denial of service (kernel panic). Vulnerabilidad desconocida en el Basic Security Module (BSM), cuando se configura para auditar las clases Administrativa (ad) o de todo el sistema (as) en Solaris 7,8 y 9, permite a usuarios locales causar una denegación de servicio (caída del kenel). • http://secunia.com/advisories/11930 •