CVE-1999-1137

EPSS 0.1%
Published 01.10.1993 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Sun ≫ Solaris

Sun ≫ Sunos

Sun ≫ Sunos Version <= 5.2

Sun ≫ Sunos Version4.1

Sun ≫ Sunos Version5.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.278

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:P/I:N/A:N

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/122&type=0&nav=sec.sba

Patch

Vendor Advisory

http://www.ciac.org/ciac/bulletins/e-01.shtml

Patch

Vendor Advisory

http://www.osvdb.org/6436

https://exchange.xforce.ibmcloud.com/vulnerabilities/549

https://nvd.nist.gov/vuln/detail/CVE-1999-1137

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-1999-1137

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-1999-1137

EUVD