CVE-1999-1142

EPSS 0.13%
Published 27.05.1992 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Sun ≫ Sunos Version <= 4.1.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.13%	0.285

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/116

http://www.cert.org/advisories/CA-1992-11.html

Patch

Third Party Advisory

US Government Resource

https://exchange.xforce.ibmcloud.com/vulnerabilities/3152

https://nvd.nist.gov/vuln/detail/CVE-1999-1142

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-1999-1142

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-1999-1142

EUVD