What is the severity of CVE-1999-1025?

CVE-1999-1025 is considered a high severity vulnerability due to its potential for unauthorized access.

How do I fix CVE-1999-1025?

To fix CVE-1999-1025, ensure that the screen lock program is configured correctly or apply any available patches for Solaris 2.6.

Which systems are affected by CVE-1999-1025?

CVE-1999-1025 affects systems running Solaris 2.6, SunOS, and SunOS 5.6.

What are the risks associated with CVE-1999-1025?

The risks associated with CVE-1999-1025 include unauthorized access to user sessions by individuals with physical access to the console.

Is there a workaround for CVE-1999-1025?

A possible workaround for CVE-1999-1025 is to prevent physical access to the console or implement alternative security measures.

Vulnerability/
CVE-1999-1025

medium

4.6

CWE

NVD-CWE-Other

12/11/1998

12/9/2001

20/11/2024

CVE-1999-1025

First published: Thu Nov 12 1998(Updated: )

CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Sun SunOS	=5.6
Oracle Solaris and Zettabyte File System (ZFS)	=2.6
Sun SunOS

Remedy

http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fpatches%2F106027&zone_32=411568%2A%20

Remedy

http://www.securityfocus.com/bid/294

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-1999-1025?
CVE-1999-1025 is considered a high severity vulnerability due to its potential for unauthorized access.
How do I fix CVE-1999-1025?
To fix CVE-1999-1025, ensure that the screen lock program is configured correctly or apply any available patches for Solaris 2.6.
Which systems are affected by CVE-1999-1025?
CVE-1999-1025 affects systems running Solaris 2.6, SunOS, and SunOS 5.6.
What are the risks associated with CVE-1999-1025?
The risks associated with CVE-1999-1025 include unauthorized access to user sessions by individuals with physical access to the console.
Is there a workaround for CVE-1999-1025?
A possible workaround for CVE-1999-1025 is to prevent physical access to the console or implement alternative security measures.

agent/type
agent/remedy
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/references
agent/description
agent/last-modified-date
agent/author
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-historical
vendor/sun
vendor/sunos
vendor/solaris
agent/software-canonical-lookup-request
collector/nvd-api
source/NVD
agent/software-canonical-lookup
collector/nvd-index
canonical/sun sunos
version/sun sunos/5.6
canonical/oracle solaris and zettabyte file system (zfs)
version/oracle solaris and zettabyte file system (zfs)/2.6

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.