CVSS: 7.5EPSS: 3%CPEs: 8EXPL: 0CVE-2001-1414
https://notcve.org/view.php?id=CVE-2001-1414
The Basic Security Module (BSM) for Solaris 2.5.1, 2.6, 7, and 8 does not log anonymous FTP access, which allows remote attackers to hide their activities, possibly when certain BSM audit files are not present under the FTP root. • http://sunsolve.sun.com/search/document.do?assetkey=1-26-40521-1 http://www.securityfocus.com/bid/7396 https://exchange.xforce.ibmcloud.com/vulnerabilities/11841 •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 2CVE-2001-0686
https://notcve.org/view.php?id=CVE-2001-0686
Buffer overflow in mail included with SunOS 5.8 for x86 allows a local user to gain privileges via a long HOME environment variable. • http://archives.neohapsis.com/archives/bugtraq/2001-06/0000.html http://www.securityfocus.com/bid/2819 https://exchange.xforce.ibmcloud.com/vulnerabilities/6638 •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2001-1066
https://notcve.org/view.php?id=CVE-2001-1066
ns6install installation script for Netscape 6.01 on Solaris, and other versions including 6.2.1 beta, allows local users to overwrite arbitrary files via a symlink attack. • http://archives.neohapsis.com/archives/vulnwatch/2001-q3/0036.html http://marc.info/?l=bugtraq&m=99893667921216&w=2 http://www.securityfocus.com/bid/3243 https://exchange.xforce.ibmcloud.com/vulnerabilities/7042 •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 1CVE-2001-0548 – Solaris 2.6/7.0 - DTMail Mail Environment Variable Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0548
Buffer overflow in dtmail in Solaris 2.6 and 7 allows local users to gain privileges via the MAIL environment variable. • https://www.exploit-db.com/exploits/21024 http://marc.info/?l=bugtraq&m=99598918914068&w=2 http://www.securityfocus.com/bid/3081 https://exchange.xforce.ibmcloud.com/vulnerabilities/6879 •
CVSS: 10.0EPSS: 0%CPEs: 87EXPL: 3CVE-2001-0554 – Solaris 2.x/7.0/8 / IRIX 6.5.x / OpenBSD 2.x / NetBSD 1.x / Debian 3 / HP-UX 10 - 'TelnetD' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0554
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function. • https://www.exploit-db.com/exploits/21018 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:49.telnetd.asc ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-012.txt.asc ftp://patches.sgi.com/support/free/security/advisories/20010801-01-P ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.10/CSSA-2001-SCO.10.txt http://archives.neohapsis.com/archives/hp/2001-q4/0014.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000413 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •