sunos software vulnerabilities

Searching sunos software vulnerabilities

ypbind with -ypset and -ypsetme options activat

ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.

Vulnerability in in.telnetd in SunOS 4.1.1 and

Vulnerability | intelnetd | SunOS |

Vulnerability in in.telnetd in SunOS 4.1.1 and earlier allows local users to gain root privileges.

Vulnerability in in.rlogind in SunOS 4.0.3 and

Vulnerability | inrlogind | SunOS |

Vulnerability in in.rlogind in SunOS 4.0.3 and 4.0.3c allows local users to gain root privileges.

passwd in SunOS 4.1.x allows local users to ove

passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument.

Vulnerability in integer multiplication emulati

Vulnerability in integer multiplication emulation code on SPARC architectures for SunOS 4.1 through 4.1.2 allows local users to gain root access or cause a denial of service (crash).

Vulnerability in /bin/mail in SunOS 4.1.1 and e

Vulnerability | /bin/mail | SunOS |

Vulnerability in /bin/mail in SunOS 4.1.1 and earlier allows local users to gain root privileges via certain command line arguments.

SunOS 4.1.4 on a Sparc 20 machine allows local

SunOS |

SunOS 4.1.4 on a Sparc 20 machine allows local users to cause a denial of service (kernel panic) by reading from the /dev/tcx0 TCX device.

Vulnerability in rcp on SunOS 4.0.x allows remo

Vulnerability in rcp on SunOS 4.0.x allows remote attackers from trusted hosts to execute arbitrary commands as root, possibly related to the configuration of the nobody user.

Vulnerability in SMI Sendmail 4.0 and earlier,

Vulnerability in SMI Sendmail 4.0 and earlier, on SunOS up to 4.0.3, allows remote attackers to access user bin.

SunOS sendmail 5.59 through 5.65 uses popen to

sendmail | SunOS |

SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.

Unknown vulnerability in (1) loadmodule, and (2

vulnerability | Unknown |

Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586.

loadmodule in SunOS 4.1.x, as used by xnews, do

loadmodule in SunOS 4.1.x, as used by xnews, does not properly sanitize its environment, which allows local users to gain privileges, a different vulnerability than CVE-1999-1584.

Multiple unspecified vulnerabilities in sendmai

Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129.

Buffer overflow in whodo in Solaris SunOS 5.5.1

Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable.

The finger daemon (in.fingerd) in Sun Solaris 2

daemon | finger |

The finger daemon (in.fingerd) in Sun Solaris 2.5 through 8 and SunOS 5.5 through 5.8 allows remote attackers to list all accounts on a host by typing finger 'a b c d e f g h'@host.

Argument injection vulnerability in the telnet

Argument injection vulnerability in the telnet daemon (in.telnetd) in Solaris 10 and 11 (SunOS 5.10 and 5.11) misinterprets certain client "-f" sequences as valid requests for the login program to skip authentication, which allows remote attackers to log into certain accounts, as demonstrated by the bin account.

Software vulnerabilities results 1 to 17 of 17

Page: 1

sunos software vulnerabilities

vulnerabilities.aspcode.net

Searching sunos software vulnerabilities