CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 3CVE-1999-1191 – Solaris 2.5.0/2.5.1 ps / chkey - Data Buffer
https://notcve.org/view.php?id=CVE-1999-1191
19 May 1997 — Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. • https://www.exploit-db.com/exploits/332 •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 2CVE-1999-1402 – FreeBSD 3.1 / Solaris 2.6 - Domain Socket
https://notcve.org/view.php?id=CVE-1999-1402
17 May 1997 — The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket. • https://www.exploit-db.com/exploits/19346 •
CVSS: 7.8EPSS: 0%CPEs: 43EXPL: 5CVE-1999-0040 – LibXt - 'XtAppInitialize()' Local Overflow *xterm
https://notcve.org/view.php?id=CVE-1999-0040
01 May 1997 — Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges. • https://www.exploit-db.com/exploits/331 •
CVSS: 8.4EPSS: 0%CPEs: 45EXPL: 2CVE-1999-0038 – BSD/OS 2.1 / DG/UX 7.0 / Debian 1.3 / HP-UX 10.34 / IBM AIX 4.2 / SGI IRIX 6.4 / Solaris 2.5.1 - '/usr/bin/X11/xlock' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0038
26 Apr 1997 — Buffer overflow in xlock program allows local users to execute commands as root. • https://www.exploit-db.com/exploits/19173 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 1CVE-1999-0315 – Solaris 2.4 - '/bin/fdformat' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0315
01 Apr 1997 — Buffer overflow in Solaris fdformat command gives root access to local users. • https://www.exploit-db.com/exploits/328 •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 1CVE-1999-0109 – Solaris 2.5.1 - 'ffbconfig' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0109
10 Feb 1997 — Buffer overflow in ffbconfig in Solaris 2.5.1. • https://www.exploit-db.com/exploits/19159 •
CVSS: 9.8EPSS: 0%CPEs: 15EXPL: 1CVE-1999-0369 – Sun Solaris 7.0 - '/usr/dt/bin/sdtcm_convert' Local Overflow / Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0369
01 Feb 1997 — The Sun sdtcm_convert calendar utility for OpenWindows has a buffer overflow which can gain root access. • https://www.exploit-db.com/exploits/19128 •
CVSS: 9.8EPSS: 0%CPEs: 50EXPL: 3CVE-1999-0051 – SGI IRIX 5.3/6.2 / SGI license_oeo 1.0 LicenseManager - 'NETLS_LICENSE_FILE' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0051
06 Jan 1997 — Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX. • https://www.exploit-db.com/exploits/19066 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 2CVE-1999-1026 – Solaris 7.0 - aspppd Insecure Temporary File Creation
https://notcve.org/view.php?id=CVE-1999-1026
20 Dec 1996 — aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file. • https://www.exploit-db.com/exploits/19233 •
CVSS: 7.8EPSS: 0%CPEs: 29EXPL: 0CVE-1999-0129
https://notcve.org/view.php?id=CVE-1999-0129
03 Dec 1996 — Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. • http://www.cert.org/advisories/CA-1996-25.html •