Pablo Sor

7 exploits Active since Mar 1999
EIP-2026-114732 EXPLOITDB c WORKING POC
Solaris 2.5/2.5.1 - 'getgrnam()' Local Overflow
CVE-2001-0565 EXPLOITDB c WORKING POC
Solaris <= 8 - Buffer Overflow via mailx -F Option
Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option.
CVE-2001-0565 EXPLOITDB c WORKING POC
Solaris <= 8 - Buffer Overflow via mailx -F Option
Buffer overflow in mailx in Solaris 8 and earlier allows a local attacker to gain additional privileges via a long '-F' command line option.
CVE-2001-0401 EXPLOITDB c WORKING POC
Solaris <= 8 - Local Buffer Overflow via HOME Environment Variable
Buffer overflow in tip in Solaris 8 and earlier allows local users to execute arbitrary commands via a long HOME environmental variable.
CVE-2001-1076 EXPLOITDB c WORKING POC
Solaris SunOS 5.5.1-5.8 - Buffer Overflow via SOR or CFIME Environment Variable
Buffer overflow in whodo in Solaris SunOS 5.5.1 through 5.8 allows local users to execute arbitrary code via a long (1) SOR or (2) CFIME environment variable.
CVE-1999-1371 EXPLOITDB c WORKING POC
Solaris 2.6-7 - Buffer Overflow
Buffer overflow in /usr/bin/write in Solaris 2.6 and 7 allows local users to gain privileges via a long string in the terminal name argument.
CVE-2001-0701 EXPLOITDB text WORKING POC
Sun Validation Test Suite 4.3 - Buffer Overflow via Long -o Argument
Buffer overflow in ptexec in the Sun Validation Test Suite 4.3 and earlier allows a local user to gain privileges via a long -o argument.