Search Results (1712 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2006-0531 1 Sun 1 Java System Access Manager 2026-04-16 N/A
Unspecified vulnerability in Sun Java System Access Manager 7.0 allows local users logged in as "root" to bypass authentication and gain top-level administrator privileges via the amadmin CLI tool.
CVE-2006-0617 1 Sun 2 Jdk, Jre 2026-04-16 N/A
Multiple unspecified vulnerabilities in Sun Java JDK and JRE 5.0 Update 5 and earlier allow remote attackers to bypass Java sandbox security and obtain privileges via unspecified vectors involving the reflection APIs, aka the "fifth, sixth, and seventh issues."
CVE-2006-4049 1 Sun 1 Ray Server Software 2026-04-16 N/A
Unspecified vulnerability in the utxconfig utility in Sun Ray Server Software 3.x allows local users to create or overwrite arbitrary files via unknown attack vectors.
CVE-2006-4655 2 Sco, Sun 2 Unixware, Solaris 2026-04-16 N/A
Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.
CVE-2005-2738 1 Sun 1 Java 2026-04-16 N/A
Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X does not prevent multiple programs from opening the same port as a Java ServerSocket, which allows local users to operate a Java program that intercepts network data intended for the ServerSocket of a different Java program.
CVE-2006-4773 1 Sun 1 Storedge 6130 Arrays 2026-04-16 N/A
Sun StorEdge 6130 Array Controllers with firmware 06.12.10.11 and earlier allow remote attackers to cause a denial of service (controller reboot) via a flood of traffic on the LAN.
CVE-2006-4958 1 Sun 1 Secure Global Desktop 2026-04-16 N/A
Multiple cross-site scripting (XSS) vulnerabilities in Sun Secure Global Desktop (SSGD, aka Tarantella) before 4.20.983 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving (1) taarchives.cgi, (2) ttaAuthentication.jsp, (3) ttalicense.cgi, (4) ttawlogin.cgi, (5) ttawebtop.cgi, (6) ttaabout.cgi, or (7) test-cgi. NOTE: This information is based upon a vague initial disclosure. Details will be updated as they become available.
CVE-1999-0722 1 Sun 1 Cobalt Raq 2 2026-04-16 N/A
The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages.
CVE-1999-0008 2 Hp, Sun 3 Hp-ux, Solaris, Sunos 2026-04-16 N/A
Buffer overflow in NIS+, in Sun's rpc.nisd program.
CVE-1999-0320 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary files.
CVE-1999-0011 8 Data General, Ibm, Isc and 5 more 11 Dg Ux, Aix, Bind and 8 more 2026-04-16 5.4 Medium
Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.
CVE-1999-0017 9 Caldera, Freebsd, Gnu and 6 more 11 Openlinux, Freebsd, Inet and 8 more 2026-04-16 N/A
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
CVE-1999-0408 1 Sun 1 Cobalt Raq 2026-04-16 N/A
Files created from interactive shell sessions in Cobalt RaQ microservers (e.g. .bash_history) are world readable, and thus are accessible from the web server.
CVE-1999-0568 1 Sun 1 Solaris 2026-04-16 N/A
rpc.admind in Solaris is not running in a secure mode.
CVE-1999-1371 1 Sun 1 Sunos 2026-04-16 N/A
Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument.
CVE-2000-0317 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Buffer overflow in Solaris 7 lpset allows local users to gain root privileges via a long -r option.
CVE-2002-0573 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Format string vulnerability in RPC wall daemon (rpc.rwalld) for Solaris 2.5.1 through 8 allows remote attackers to execute arbitrary code via format strings in a message that is not properly provided to the syslog function when the wall command cannot be executed.
CVE-2003-1024 1 Sun 1 Sunos 2026-04-16 N/A
Unknown vulnerability in the ls-F builtin function in tcsh on Solaris 8 allows local users to create or delete files as other users, and gain privileges.
CVE-2004-0523 5 Mit, Redhat, Sgi and 2 more 8 Kerberos, Kerberos 5, Enterprise Linux and 5 more 2026-04-16 N/A
Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.
CVE-2004-0654 1 Sun 2 Solaris, Sunos 2026-04-16 N/A
Unknown vulnerability in the Basic Security Module (BSM), when configured to audit either the Administrative (ad) or the System-Wide Administration (as) audit class in Solaris 7, 8, and 9, allows local users to cause a denial of service (kernel panic).