Page 45 of 619 results (0.033 seconds)

CVSS: 7.5EPSS: 2%CPEs: 4EXPL: 0

20 Aug 2003 — The patches (1) 105693-13, (2) 108800-02, (3) 105694-13, and (4) 108801-02 for cachefs on Solaris 2.6 and 7 overwrite the inetd.conf file, which may silently reenable services and allow remote attackers to bypass the intended security policy. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-56300-1 •

CVSS: 4.7EPSS: 0%CPEs: 8EXPL: 1

14 Aug 2003 — Unknown vulnerability in Solaris 2.6 through 9 causes a denial of service (system panic) via "a rare race condition" or an attack by local users. Vulnerabilidad desconocida en Solaris 2.6 a 9 causa una denegación de servicio (pánico de sistema) mediante "una rara condición de carrera" o un ataque de usuarios locales. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F47353 •

CVSS: 10.0EPSS: 79%CPEs: 8EXPL: 7

01 Aug 2003 — Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 through 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buffer overflow, including (1) STOR, (2) RETR, (3) APPE, (4) DELE, (5) MKD, (6) RMD, (7) STOU, or (8) RNTO. Error de fuera-por-uno (off-by-one) en la función fb_realpath(), derivada de la función realpath de BSD, pude permitir a atacantes ejecutar código... • https://www.exploit-db.com/exploits/22976 • CWE-193: Off-by-one Error •

CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 2

01 Aug 2003 — Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long LD_PRELOAD environment variable. Desbordamiento basado en la pila en el enlazador de tiempo de ejecución, ld.so.1 en Solaris 2.6 a 9 permite a usuarios locales ganar privilegios de root mediante una variable de entorno LD_PRELOAD larga. • https://www.exploit-db.com/exploits/1182 •

CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 2

03 Jul 2003 — Buffer overflow in the nss_ldap.so.1 library for Sun Solaris 8 and 9 may allow local users to gain root access via a long hostname in an LDAP lookup. • https://www.exploit-db.com/exploits/4 •

CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0

19 Jun 2003 — Multiple buffer overflows in the (1) dbm_open function, as used in ndbm and dbm, and the (2) dbminit function in Solaris 2.6 through 9 allow local users to gain root privileges via long arguments to Xsun or other programs that use these functions. • http://secunia.com/advisories/9088 •

CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0

06 Jun 2003 — Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4659277, a different vulnerability than CVE-2003-1082. • http://secunia.com/advisories/8957 •

CVSS: 7.5EPSS: 2%CPEs: 8EXPL: 0

03 Jun 2003 — The Telnet daemon (in.telnetd) for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (CPU consumption by infinite loop). • http://secunia.com/advisories/8935 •

CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0

28 Apr 2003 — Memory leak in lofiadm in Solaris 8 allows local users to cause a denial of service (kernel memory consumption). • http://secunia.com/advisories/8686 •

CVSS: 7.5EPSS: 4%CPEs: 8EXPL: 0

28 Apr 2003 — Unknown vulnerability in rpcbind for Solaris 2.6 through 9 allows remote attackers to cause a denial of service (rpcbind crash). • http://secunia.com/advisories/8685 •