CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2002-1590
https://notcve.org/view.php?id=CVE-2002-1590
The Web-Based Enterprise Management (WBEM) packages (1) SUNWwbdoc, (2) SUNWwbcou, (3) SUNWwbdev and (4) SUNWmgapp packages, when installed using Solaris 8 Update 1/01 or later, install files with world or group write permissions, which allows local users to gain root privileges or cause a denial of service. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-48320-1 http://www.ciac.org/ciac/bulletins/n-010.shtml http://www.securityfocus.com/bid/6061 https://exchange.xforce.ibmcloud.com/vulnerabilities/10495 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.0EPSS: 0%CPEs: 9EXPL: 0CVE-2002-1199
https://notcve.org/view.php?id=CVE-2002-1199
The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. El procedimiento getdbm en ypxfrd permite a usuarios locales leer ficheros arbitrarios, y a atacantes remotos leer bases de datos fuera de /var/yp, mediante ataques de atravesamiento de directorios y de enlaces simbólicos en los argumentos de dominio y mapa. • ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40 http://marc.info/?l=bugtraq&m=103426842025029&w=2 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47903 http://www.iss.net/security_center/static/10329.php http://www.kb.cert.org/vuls/id/538033 http://www.securityfocus.com/bid/5937 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2423 •
CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 0CVE-2002-1589
https://notcve.org/view.php?id=CVE-2002-1589
Unknown vulnerability in Solaris 8, when the 0x02 bit (aka TEST, KMF_DEADBEEF, or deadbeef) is set in the kmem_flags kernel parameter, allows local users to cause a denial of service (system panic). • http://sunsolve.sun.com/search/document.do?assetkey=1-26-48067-1 http://www.securityfocus.com/bid/6080 https://exchange.xforce.ibmcloud.com/vulnerabilities/10496 •
CVSS: 5.0EPSS: 0%CPEs: 8EXPL: 0CVE-2002-1228
https://notcve.org/view.php?id=CVE-2002-1228
Unknown vulnerability in NFS on Solaris 2.5.1 through Solaris 9 allows an NFS client to cause a denial of service by killing the lockd daemon. • http://marc.info/?l=bugtraq&m=103487058823193&w=2 http://sunsolve.sun.com/search/document.do?assetkey=1-26-47815-1 http://www.iss.net/security_center/static/10394.php http://www.kb.cert.org/vuls/id/855635 http://www.securityfocus.com/bid/5986 •
CVSS: 7.5EPSS: 3%CPEs: 4EXPL: 0CVE-2002-0884
https://notcve.org/view.php?id=CVE-2002-0884
Multiple format string vulnerabilities in in.rarpd (ARP server) on Solaris, Caldera UnixWare and Open UNIX, and possibly other operating systems, allows remote attackers to execute arbitrary code via format strings that are not properly handled in the functions (1) syserr and (2) error. • ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.29/CSSA-2002-SCO.29.txt http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0074.html http://online.securityfocus.com/archive/1/273584 http://www.iss.net/security_center/static/9150.php http://www.securityfocus.com/bid/4791 •