Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1142

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-1999-1142
Last Modified 05 Sep 2008 04:18:49
Published 27 May 1992 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1142

Summary

SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.

Vulnerable Systems

Operating System

  • Sunos 4.1.2


References

CERT - CA-1992-11

XF - sun-env(3152)

SUN - 00116


Last Updated: 27 May 2016 10:35:18