Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0689

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-1999-0689
Last Modified 09 Sep 2008 08:35:13
Published 13 Sep 1999 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-0689

Summary

The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.

Vulnerable Systems

Operating System

  • Sun Solaris 2.5

  • Sun Solaris 2.5.1

  • Sun Solaris 2.6

  • Sun Solaris 7.0

Application

  • Cde 1.0.1

  • Cde 1.0.2

  • Cde 1.1

  • Cde 1.2

  • Cde 2.0

  • Cde 2.1

  • Cde 2.120


References

HP - HPSBUX9909-103

BID - 636

SUN - 00192


Last Updated: 27 May 2016 10:35:04