First published: Mon Nov 10 1997(Updated: )
Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Sun Solstice Adminsuite | =2.1 | |
Sun Solstice Adminsuite | =2.2 | |
Sun Solstice Adminsuite | =2.1 | |
Sun Solstice Adminsuite | =2.2 | |
=2.1 | ||
=2.1 | ||
=2.2 | ||
=2.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-1999-1427 is considered a critical vulnerability due to the potential for local users to gain root privileges.
To fix CVE-1999-1427, ensure that file creation permissions are securely set and update to a patched version of the software.
CVE-1999-1427 affects users of Solaris Solstice AdminSuite versions 2.1 and 2.2.
CVE-1999-1427 cannot be exploited remotely as it requires local access to the system.
Systems running Solaris Solstice AdminSuite 2.1 and 2.2 are at risk from CVE-1999-1427.