CVE-1999-1142

EPSS 0.13%
Veröffentlicht 27.05.1992 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sun ≫ Sunos Version <= 4.1.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.13%	0.285

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/116

http://www.cert.org/advisories/CA-1992-11.html

Patch

Third Party Advisory

US Government Resource

https://exchange.xforce.ibmcloud.com/vulnerabilities/3152

https://nvd.nist.gov/vuln/detail/CVE-1999-1142

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-1999-1142

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-1999-1142

EUVD