Filtered by vendor Sun
Subscriptions
Total
1716 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2008-3440 | 1 Sun | 1 Java | 2008-09-10 | N/A |
Sun Java 1.6.0_03 and earlier versions, and possibly later versions, does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning. | ||||
CVE-1999-0831 | 4 Cobalt, Debian, Sun and 1 more | 6 Qube, Debian Linux, Cobalt Raq and 3 more | 2008-09-09 | N/A |
Denial of service in Linux syslogd via a large number of connections. | ||||
CVE-1999-0797 | 1 Sun | 1 Sunos | 2008-09-09 | N/A |
NIS finger allows an attacker to conduct a denial of service via a large number of finger requests, resulting in a large number of NIS queries. | ||||
CVE-1999-0722 | 1 Sun | 1 Cobalt Raq 2 | 2008-09-09 | N/A |
The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages. | ||||
CVE-1999-0408 | 1 Sun | 1 Cobalt Raq | 2008-09-09 | N/A |
Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server. | ||||
CVE-1999-0298 | 2 Slackware, Sun | 2 Slackware Linux, Sunos | 2008-09-09 | N/A |
ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack. | ||||
CVE-1999-0209 | 1 Sun | 1 Sunos | 2008-09-09 | N/A |
The SunView (SunTools) selection_svc facility allows remote users to read files. | ||||
CVE-1999-0186 | 1 Sun | 1 Solaris | 2008-09-09 | N/A |
In Solaris, an SNMP subagent has a default community string that allows remote attackers to execute arbitrary commands as root, or modify system parameters. | ||||
CVE-1999-0164 | 1 Sun | 1 Sunos | 2008-09-09 | N/A |
A race condition in the Solaris ps command allows an attacker to overwrite critical files. | ||||
CVE-1999-0134 | 1 Sun | 1 Sunos | 2008-09-09 | N/A |
vold in Solaris 2.x allows local users to gain root access. | ||||
CVE-1999-0032 | 5 Bsdi, Freebsd, Next and 2 more | 5 Bsd Os, Freebsd, Nextstep and 2 more | 2008-09-09 | N/A |
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option. | ||||
CVE-1999-0019 | 7 Data General, Ibm, Ncr and 4 more | 10 Dg Ux, Aix, Mp-ras and 7 more | 2008-09-09 | N/A |
Delete or create a file via rpc.statd, due to invalid information. | ||||
CVE-2005-3238 | 1 Sun | 1 Solaris | 2008-09-05 | N/A |
Multiple unspecified vulnerabilities in Solaris 10 SCTP Socket Option Processing allows local users to cause a denial of service (panic) via unspecified attack vectors. | ||||
CVE-2005-0418 | 1 Sun | 1 J2se | 2008-09-05 | N/A |
Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06, on Mac OS X, allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file. NOTE: it is highly likely that this item will be MERGED with CVE-2005-0836. | ||||
CVE-2002-1525 | 2 Astaware, Sun | 2 Searchdisc, Sunone Starter Kit | 2008-09-05 | N/A |
Directory traversal vulnerability in ASTAware SearchDisk engine for Sun ONE Starter Kit 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack on port (1) 6015 or (2) 6016, or (3) an absolute pathname to port 6017. | ||||
CVE-2002-1042 | 2 Netscape, Sun | 4 Enterprise Server, Iplanet Web Server, One Application Server and 1 more | 2008-09-05 | N/A |
Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter. | ||||
CVE-2002-1034 | 1 Sun | 1 I-runbook | 2008-09-05 | N/A |
none.php for SunPS iRunbook 2.5.2 allows remote attackers to read arbitrary files via an absolute pathname in the argument. | ||||
CVE-2002-1033 | 1 Sun | 1 I-runbook | 2008-09-05 | N/A |
Directory traversal vulnerability in none.php for SunPS iRunbook 2.5.2 allows remote attackers to read arbitrary files via a "..:" sequence (dot-dot variant) in the argument. | ||||
CVE-2002-0994 | 1 Sun | 1 Sun Pci Ii Driver | 2008-09-05 | N/A |
SunPCi II VNC uses a weak authentication scheme, which allows remote attackers to obtain the VNC password by sniffing the random byte challenge, which is used as the key for encrypted communications. | ||||
CVE-2001-1306 | 1 Sun | 1 Iplanet Directory Server | 2008-09-05 | N/A |
iPlanet Directory Server 4.1.4 and earlier (LDAP) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid BER length of length fields, as demonstrated by the PROTOS LDAPv3 test suite. |