CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 3CVE-2001-0422 – Solaris 2.x/7.0/8 - Xsun HOME Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0422
02 Jul 2001 — Buffer overflow in Xsun in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable. • https://www.exploit-db.com/exploits/20743 •
CVSS: 9.8EPSS: 2%CPEs: 12EXPL: 0CVE-2001-1328
https://notcve.org/view.php?id=CVE-2001-1328
22 Jun 2001 — Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code. • ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-2001.03 •
CVSS: 6.4EPSS: 2%CPEs: 2EXPL: 2CVE-2001-0421 – Solaris 2.6 - FTP Core Dump Shadow Password Recovery
https://notcve.org/view.php?id=CVE-2001-0421
24 May 2001 — FTP server in Solaris 8 and earlier allows local and remote attackers to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sensitive information such as shadowed passwords, or fill the disk partition. • https://www.exploit-db.com/exploits/20764 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-2001-0401 – Solaris 2.5/2.6/7.0/8 tip - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0401
24 May 2001 — Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable. • https://www.exploit-db.com/exploits/20684 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2001-0190
https://notcve.org/view.php?id=CVE-2001-0190
26 Mar 2001 — Buffer overflow in /usr/bin/cu in Solaris 2.8 and earlier, and possibly other operating systems, allows local users to gain privileges by executing cu with a long program name (arg0). • http://marc.info/?l=bugtraq&m=97983943716311&w=2 •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 2CVE-2001-0115 – Solaris 7/8-beta - ARP Local Overflow
https://notcve.org/view.php?id=CVE-2001-0115
12 Mar 2001 — Buffer overflow in arp command in Solaris 7 and earlier allows local users to execute arbitrary commands via a long -f parameter. • https://www.exploit-db.com/exploits/250 •
CVSS: 10.0EPSS: 0%CPEs: 74EXPL: 13CVE-2000-0844 – Immunix OS 6.2 - LC glibc format string
https://notcve.org/view.php?id=CVE-2000-0844
14 Nov 2000 — Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. • https://www.exploit-db.com/exploits/20187 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 2CVE-2000-0471 – Solaris 2.5/2.6/7.0/8 ufsrestore - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0471
14 Jun 2000 — Buffer overflow in ufsrestore in Solaris 8 and earlier allows local users to gain root privileges via a long pathname. • https://www.exploit-db.com/exploits/20014 •
CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2000-0055
https://notcve.org/view.php?id=CVE-2000-0055
06 Jan 2000 — Buffer overflow in Solaris chkperm command allows local users to gain root access via a long -n option. • http://www.securityfocus.com/bid/918 •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 5CVE-1999-0977 – Solaris 2.5/2.5.1/2.6/7.0 - 'sadmind' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0977
10 Dec 1999 — Buffer overflow in Solaris sadmind allows remote attackers to gain root privileges using a NETMGT_PROC_SERVICE request. • https://www.exploit-db.com/exploits/19668 •