CVSS: 10.0EPSS: 54%CPEs: 12EXPL: 0CVE-2004-0368 – SCOSA-2005.18.txt
https://notcve.org/view.php?id=CVE-2004-0368
25 Mar 2004 — Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet. Vulnerabilidad de doble liberación de memora en dtlogin de CDE sobre Solaris, y posiblemente otros sistemas operativos, permite a atacantes remotos ejecutar código arbitrario mediante cierto paquete UDP. The CDE dtlogin utility has a double-free vulnerability in the X Display Manager Control Protocol (XDMCP). By sending a specially-crafted X... • ftp://patches.sgi.com/support/free/security/advisories/20040801-01-P • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 64%CPEs: 6EXPL: 3CVE-2001-0803 – Solaris dtspcd Heap Overflow
https://notcve.org/view.php?id=CVE-2001-0803
06 Dec 2001 — Buffer overflow in the client connection routine of libDtSvc.so.1 in CDE Subprocess Control Service (dtspcd) allows remote attackers to execute arbitrary commands. • https://packetstorm.news/files/id/82312 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •