Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1026

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-1999-1026
Last Modified 05 Sep 2008 04:18:32
Published 20 Dec 1996 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1026

Summary

aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file.

Vulnerable Systems

Operating System

  • Sun Solaris 2.4

  • Sun Solaris 2.5

  • Sun Solaris 2.5.1


References

BID - 292

BUGTRAQ - 19961220 Solaris 2.5 x86 aspppd (semi-exploitable-hole)


Last Updated: 27 May 2016 10:35:14