CVSS: 10.0EPSS: 85%CPEs: 12EXPL: 0CVE-2004-0368
https://notcve.org/view.php?id=CVE-2004-0368
Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet. Vulnerabilidad de doble liberación de memora en dtlogin de CDE sobre Solaris, y posiblemente otros sistemas operativos, permite a atacantes remotos ejecutar código arbitrario mediante cierto paquete UDP. • ftp://patches.sgi.com/support/free/security/advisories/20040801-01-P http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0064.html http://lists.immunitysec.com/pipermail/dailydave/2004-March/000402.html http://secunia.com/advisories/11210 http://secunia.com/advisories/11214 http://secunia.com/advisories/11495 http://secunia.com/advisories/11614 http://sunsolve.sun.com/search/document.do?assetkey=1-26-101478-1 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57539-1&se • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 25%CPEs: 6EXPL: 2CVE-2001-0803 – Solaris dtspcd - Remote Heap Overflow
https://notcve.org/view.php?id=CVE-2001-0803
Buffer overflow in the client connection routine of libDtSvc.so.1 in CDE Subprocess Control Service (dtspcd) allows remote attackers to execute arbitrary commands. • https://www.exploit-db.com/exploits/16323 https://www.exploit-db.com/exploits/9923 ftp://patches.sgi.com/support/free/security/advisories/20011107-01-P ftp://stage.caldera.com/pub/security/openunix/CSSA-2001-SCO.30 http://ftp.support.compaq.com/patches/.new/html/SSRT-541.shtml http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/214 http://www.cert.org/advisories/CA-2001-31.html http://www.cert.org/advisories/CA-2002-01.html http://www.kb. • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •