Vulnerabilities > CVE-1999-0185 - Unspecified vulnerability in SUN Solaris and Sunos

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

sun

NVD

Published: 1997-10-01

Updated: 2018-10-30

Summary

In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.

Vulnerable Configurations

Part	Description	Count
OS	Sun SUN Solaris 2.4 SUN Solaris 2.5 SUN Solaris 2.5.1 SUN Sunos 4.1.3U1 SUN Sunos 4.1.4 SUN Sunos 5.3 SUN Sunos 5.4 SUN Sunos 5.5 SUN Sunos 5.5.1	9

References

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/156