SUN : Security Vulnerabilities, CVEs, CVSS score between 5 and 5.99
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
Max CVSS
5.0
EPSS Score
0.29%
Published
1998-04-08
Updated
2018-10-30
Teardrop IP denial of service.
Max CVSS
5.0
EPSS Score
0.13%
Published
1997-12-16
Updated
2018-05-03
Land IP denial of service.
Max CVSS
5.0
EPSS Score
0.15%
Published
1997-12-01
Updated
2008-09-09
Delete or create a file via rpc.statd, due to invalid information.
Max CVSS
5.0
EPSS Score
0.75%
Published
1996-04-24
Updated
2008-09-09
DNS cache poisoning via BIND, by predictable query IDs.
Max CVSS
5.0
EPSS Score
0.75%
Published
1997-08-13
Updated
2022-08-17
Sun's ftpd daemon can be subjected to a denial of service.
Max CVSS
5.0
EPSS Score
4.97%
Published
1998-06-10
Updated
2018-10-30
A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2.
Max CVSS
5.0
EPSS Score
1.49%
Published
1997-12-16
Updated
2018-08-22
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
Max CVSS
5.0
EPSS Score
1.15%
Published
1996-12-18
Updated
2022-08-17
NFS allows users to use a "cd .." command to access other directories besides the exported file system.
Max CVSS
5.0
EPSS Score
0.55%
Published
1997-01-01
Updated
2022-08-17
CVE-1999-0209
Public exploit
The SunView (SunTools) selection_svc facility allows remote users to read files.
Max CVSS
5.0
EPSS Score
55.78%
Published
1990-08-14
Updated
2008-09-09
Extra long export lists over 256 characters in some mount daemons allows NFS directories to be mounted by anyone.
Max CVSS
5.0
EPSS Score
1.00%
Published
1994-02-14
Updated
2024-02-22
Malicious option settings in UDP packets could force a reboot in SunOS 4.1.3 systems.
Max CVSS
5.0
EPSS Score
4.96%
Published
1997-01-01
Updated
2022-08-17
Denial of service through Solaris 2.5.1 telnet by sending ^D characters.
Max CVSS
5.0
EPSS Score
4.97%
Published
1998-01-01
Updated
2022-08-17
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.
Max CVSS
5.0
EPSS Score
0.85%
Published
1997-01-01
Updated
2022-08-17
ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a denial of service.
Max CVSS
5.0
EPSS Score
14.31%
Published
1998-01-05
Updated
2022-08-17
Denial of service in Linux syslogd via a large number of connections.
Max CVSS
5.0
EPSS Score
0.17%
Published
1999-11-19
Updated
2008-09-09
Denial of service in BIND named via consuming more than "fdmax" file descriptors.
Max CVSS
5.0
EPSS Score
0.33%
Published
1999-11-10
Updated
2018-10-30
Denial of service in Solaris TCP streams driver via a malicious connection that causes the server to panic as a result of recursive calls to mutex_enter.
Max CVSS
5.0
EPSS Score
0.25%
Published
1999-09-23
Updated
2018-10-30
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
Max CVSS
5.0
EPSS Score
0.40%
Published
1997-08-24
Updated
2017-12-19
rpc.pwdauthd in SunOS 4.1.1 and earlier does not properly prevent remote access to the daemon, which allows remote attackers to obtain sensitive system information.
Max CVSS
5.0
EPSS Score
0.26%
Published
1991-01-15
Updated
2017-10-10
Solaris dmispd dmi_cmd allows local users to fill up restricted disk space by adding files to the /var/dmi/db database.
Max CVSS
5.0
EPSS Score
4.96%
Published
1999-12-22
Updated
2018-10-30
StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Max CVSS
5.0
EPSS Score
0.82%
Published
2000-03-09
Updated
2008-09-10
The default configuration of Cobalt RaQ2 and RaQ3 as specified in access.conf allows remote attackers to view sensitive contents of a .htaccess file.
Max CVSS
5.0
EPSS Score
0.59%
Published
2000-03-31
Updated
2008-09-10
Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 1023 characters long and ends in \n.
Max CVSS
5.0
EPSS Score
0.28%
Published
2000-04-21
Updated
2008-09-10
HotJava Browser 3.0 allows remote attackers to access the DOM of a web page by opening a javascript: URL in a named window.
Max CVSS
5.0
EPSS Score
0.68%
Published
2000-12-19
Updated
2017-10-10