Multiple buffer overflows in how dtmail handles attachments allows a remote attacker to execute commands.

Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges, possibly root access.

Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restoring, which could lead to increased privileges.

Sun's ftpd daemon can be subjected to a denial of service.

Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.

Buffer overflows in Sun libnsl allow root access.

Solaris rpcbind can be exploited to overwrite arbitrary files and gain root access.

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary files.

Buffer overflow in SGI IRIX mailx program.