Filtered by vendor Sun
Subscriptions
Filtered by product Sunos
Subscriptions
Total
609 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-1137 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone. | ||||
| CVE-1999-1142 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user. | ||||
| CVE-1999-1158 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd. | ||||
| CVE-1999-1191 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. | ||||
| CVE-1999-1192 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Buffer overflow in eeprom in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument. | ||||
| CVE-1999-1197 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| TIOCCONS in SunOS 4.1.1 does not properly check the permissions of a user who tries to redirect console output and input, which could allow a local user to gain privileges. | ||||
| CVE-1999-1211 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges. | ||||
| CVE-1999-1212 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges. | ||||
| CVE-1999-1258 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information. | ||||
| CVE-1999-1297 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key. | ||||
| CVE-1999-1318 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| /usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs. | ||||
| CVE-1999-1371 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument. | ||||
| CVE-1999-1388 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument. | ||||
| CVE-1999-1396 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash). | ||||
| CVE-1999-1413 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg. | ||||
| CVE-1999-1419 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Buffer overflow in nss_nisplus.so.1 library in NIS+ in Solaris 2.3 and 2.4 allows local users to gain root privileges. | ||||
| CVE-1999-1423 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| ping in Solaris 2.3 through 2.6 allows local users to cause a denial of service (crash) via a ping request to a multicast address through the loopback interface, e.g. via ping -i. | ||||
| CVE-1999-1432 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restoring, which could lead to increased privileges. | ||||
| CVE-1999-1438 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments. | ||||
| CVE-1999-1449 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device. | ||||