ReportizFlow
Filtered by vendor Sun
Subscriptions
Total
1712 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0212 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| Solaris rpc.mountd generates error messages that allow a remote attacker to determine what files are on the server. | ||||
| CVE-1999-0210 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters. | ||||
| CVE-2003-0999 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Unknown multiple vulnerabilities in (1) lpstat and (2) the libprint library in Solaris 2.6 through 9 may allow attackers to execute arbitrary code or read or write arbitrary files. | ||||
| CVE-1999-0417 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| 64 bit Solaris 7 procfs allows local users to perform a denial of service. | ||||
| CVE-1999-0190 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access. | ||||
| CVE-2006-0745 | 5 Mandrakesoft, Redhat, Sun and 2 more | 6 Mandrake Linux, Fedora Core, Solaris and 3 more | 2025-04-03 | N/A |
| X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile. | ||||
| CVE-1999-0189 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Solaris rpcbind listens on a high numbered UDP port, which may not be filtered since the standard port number is 111. | ||||
| CVE-1999-0188 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| The passwd command in Solaris can be subjected to a denial of service. | ||||
| CVE-2006-3225 | 1 Sun | 2 Java System Application Server, One Application Server | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in Sun ONE Application Server 7 before Update 9, Java System Application Server 7 2004Q2 before Update 5, and Java System Application Server Enterprise Edition 8.1 2005 Q1 allows remote attackers to inject arbitrary HTML or web script via unknown vectors. | ||||
| CVE-1999-0169 | 1 Sun | 1 Nfs | 2025-04-03 | N/A |
| NFS allows attackers to read and write any file on the system by specifying a false UID. | ||||
| CVE-1999-0795 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| The NIS+ rpc.nisd server allows remote attackers to execute certain RPC calls without authentication to obtain system information, disable logging, or modify caches. | ||||
| CVE-2005-3071 | 1 Sun | 2 Solaris, Sunos | 2025-04-03 | N/A |
| Unspecified vulnerability in Unix File System (UFS) on Solaris 8 and 9, when logging is enabled, allows local users to cause a denial of service ("soft hang") via certain write operations to UFS. | ||||
| CVE-2005-3250 | 1 Sun | 1 Solaris | 2025-04-03 | N/A |
| Unknown vulnerability in Solaris 10 allows local users to cause a denial of service (panic) via unknown vectors related to the "/proc" filesystem, which trigger a null dereference. | ||||
| CVE-1999-0168 | 1 Sun | 1 Sunos | 2025-04-03 | N/A |
| The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the portmapper despite export restrictions. | ||||
| CVE-2005-3269 | 1 Sun | 4 Java System Directory Proxy Server, Java System Directory Server, One Administration Server and 1 more | 2025-04-03 | N/A |
| Stack-based buffer overflow in help.cgi in the HTTP administrative interface for (1) Sun Java System Directory Server 5.2 2003Q4, 2004Q2, and 2005Q1, (2) Red Hat Directory Server and (3) Certificate Server before 7.1 SP1, (4) Sun ONE Directory Server 5.1 SP4 and earlier, and (5) Sun ONE Administration Server 5.2 allows remote attackers to cause a denial of service (admin server crash), or local users to gain root privileges. | ||||
| CVE-1999-0166 | 1 Sun | 1 Nfs | 2025-04-03 | N/A |
| NFS allows users to use a "cd .." command to access other directories besides the exported file system. | ||||
| CVE-1999-0165 | 3 Bsdi, Linux, Sun | 5 Bsd Os, Linux Kernel, Nfs and 2 more | 2025-04-03 | N/A |
| NFS cache poisoning. | ||||
| CVE-2001-0404 | 1 Sun | 1 Javaserver Web Dev Kit | 2025-04-03 | N/A |
| Directory traversal vulnerability in JavaServer Web Dev Kit (JSWDK) 1.0.1 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP request to the WEB-INF directory. | ||||
| CVE-1999-0142 | 2 Netscape, Sun | 2 Navigator, Java | 2025-04-03 | N/A |
| The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts. | ||||
| CVE-2005-3472 | 1 Sun | 1 Java System Communications Express | 2025-04-03 | N/A |
| Unspecified vulnerability in Sun Java System Communications Express 2005Q1 and 2004Q2 allows local and remote attackers to read sensitive information from configuration files. | ||||