CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2001-0401 – Solaris 2.5/2.6/7.0/8 tip - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0401
24 May 2001 — Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable. • https://www.exploit-db.com/exploits/20684 •
CVSS: 6.4EPSS: 2%CPEs: 2EXPL: 2CVE-2001-0421 – Solaris 2.6 - FTP Core Dump Shadow Password Recovery
https://notcve.org/view.php?id=CVE-2001-0421
24 May 2001 — FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition. • https://www.exploit-db.com/exploits/20764 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2001-0190
https://notcve.org/view.php?id=CVE-2001-0190
26 Mar 2001 — Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0). • http://marc.info/?l=bugtraq&m=97983943716311&w=2 •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 2CVE-2001-0115 – Solaris 7/8-beta - ARP Local Overflow
https://notcve.org/view.php?id=CVE-2001-0115
12 Mar 2001 — Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter. • https://www.exploit-db.com/exploits/250 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2001-0124
https://notcve.org/view.php?id=CVE-2001-0124
12 Mar 2001 — Buffer overflow in exrecover in Solaris 2.6 and earlier possibly allows local users to gain privileges via a long command line argument. • http://marc.info/?l=bugtraq&m=97908386502156&w=2 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 5CVE-2000-0949 – LBL Traceroute 1.4 a5 - Heap Corruption
https://notcve.org/view.php?id=CVE-2000-0949
19 Dec 2000 — Heap overflow in savestr function in LBNL traceroute 1.4a5 and earlier allows a local user to execute arbitrary commands via the -g option. • https://www.exploit-db.com/exploits/20250 •
CVSS: 10.0EPSS: 0%CPEs: 74EXPL: 13CVE-2000-0844 – Immunix OS 6.2 - LC glibc format string
https://notcve.org/view.php?id=CVE-2000-0844
14 Nov 2000 — Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/20187 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 2CVE-2000-0471 – Solaris 2.5/2.6/7.0/8 ufsrestore - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0471
14 Jun 2000 — Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname. • https://www.exploit-db.com/exploits/20014 •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2000-0055
https://notcve.org/view.php?id=CVE-2000-0055
06 Jan 2000 — Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option. • http://www.securityfocus.com/bid/918 •
CVSS: 10.0EPSS: 14%CPEs: 9EXPL: 5CVE-1999-0977 – Solaris 2.5/2.5.1/2.6/7.0 - 'sadmind' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0977
10 Dec 1999 — Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request. • https://www.exploit-db.com/exploits/19668 •