Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1027

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-1999-1027
Last Modified 05 Sep 2008 04:18:33
Published 07 May 1998 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1027

Summary

Solaris 2.6 HW3/98 installs admintool with world-writable permissions, which allows local users to gain privileges by replacing it with a Trojan horse program.

Vulnerable Systems

Operating System

  • Sun Solaris 2.6


References

BID - 290

BUGTRAQ - 19980507 admintool mode 0777 in Solaris 2.6 HW3/98

XF - solaris-admintool-world-writable(7296)


Last Updated: 27 May 2016 10:35:14