CVSS: 10.0EPSS: 11%CPEs: 14EXPL: 2CVE-1999-0018 – IBM AIX 3.2/4.1 / SCO Unixware 7.1.1 / SGI IRIX 5.3 / Sun Solaris 2.5.1 - Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0018
05 Dec 1997 — Buffer overflow in statd allows root privileges. • https://www.exploit-db.com/exploits/19104 •
CVSS: 10.0EPSS: 7%CPEs: 6EXPL: 1CVE-1999-0210 – Solaris 2.5.1 - 'automount' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0210
26 Nov 1997 — Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters. • https://www.exploit-db.com/exploits/19199 •
CVSS: 10.0EPSS: 1%CPEs: 40EXPL: 0CVE-1999-0097
https://notcve.org/view.php?id=CVE-1999-0097
29 Oct 1997 — The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character). • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0097 •
CVSS: 9.8EPSS: 2%CPEs: 9EXPL: 0CVE-1999-0185
https://notcve.org/view.php?id=CVE-1999-0185
01 Oct 1997 — In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/156 •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-1999-0295
https://notcve.org/view.php?id=CVE-1999-0295
01 Oct 1997 — Solaris sysdef command allows local users to read kernel memory, potentially leading to root privileges. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/157 •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-1999-0300
https://notcve.org/view.php?id=CVE-1999-0300
01 Oct 1997 — nis_cachemgr for Solaris NIS+ allows attackers to add malicious NIS+ servers. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/155 •
CVSS: 7.5EPSS: 1%CPEs: 23EXPL: 0CVE-1999-0024
https://notcve.org/view.php?id=CVE-1999-0024
13 Aug 1997 — DNS cache poisoning via BIND, by predictable query IDs. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0024 •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 1CVE-1999-0301 – SGI IRIX 6.5.4 / Solaris 2.5.1 - ps Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0301
01 Aug 1997 — Buffer overflow in SunOS/Solaris ps command. • https://www.exploit-db.com/exploits/19168 •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 2CVE-1999-1423 – Solaris 2.5.1 - 'Ping' System Panic (Denial of Service)
https://notcve.org/view.php?id=CVE-1999-1423
26 Jun 1997 — ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping request to a multicast address through the loopback interface, e.g. via ping -i. • https://www.exploit-db.com/exploits/19161 •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-1999-0189
https://notcve.org/view.php?id=CVE-1999-0189
04 Jun 1997 — Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111. • http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/142 •