Vulnerabilities > CVE-1999-0693

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

ibm

sco

nessus

exploit available

NVD

Published: 2000-03-02

Updated: 2018-05-03

Summary

Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.

Vulnerable Configurations

Part	Description	Count
OS	Hp HP HP UX 10 HP HP UX 11	2
OS	Ibm IBM AIX 4	1
OS	Sco SCO Unixware 7	1

Exploit-Db

description	TRU64/DIGITAL UNIX 4.0 d/f,AIX 4.3.2,Common Desktop Environment 2.1 20, IRIX 6.5.14,Solaris 7.0,SunOS 4.1.4 TTSession Buffer Overflow Vulnerability. CVE-1999...
id	EDB-ID:19501
last seen	2016-02-02
modified	1999-09-13
published	1999-09-13
reporter	Job de Haas of ITSX
source	https://www.exploit-db.com/download/19501/
title	DIGITAL UNIX 4.0 d/f,AIX <= 4.3.2,CDE <= 2.1,IRIX <= 6.5.14,Solaris <= 7.0,SunOS <= 4.1.4 BoF

Nessus

NASL family	RPC
NASL id	RPC_TOOLTALK.NASL
description	The tooltalk RPC service is running. A possible implementation fault in the ToolTalk object database server may allow an attacker to execute arbitrary commands as root. * This warning may be a false positive since the presence of this * vulnerability is only accurately identified with local access.
last seen	2020-06-01
modified	2020-06-02
plugin id	10239
published	1999-08-22
reporter	This script is Copyright (C) 1999-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/10239
title	CDE RPC tooltalk Service Multiple Overflows

Oval

accepted

2005-03-09T07:56:00.000-04:00

class

vulnerability

contributors

name	Brian Soby
organization	The MITRE Corporation

description

Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.

family

unix

oval:org.mitre.oval:def:4374

status

accepted

submitted

2005-02-01T12:00:00.000-04:00

title

ToolTalk Buffer Overflow via TT_SESSION Envvar

version

Vulnerabilities > CVE-1999-0693 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-1999-0693"}]}

Summary

Vulnerable Configurations

Exploit-Db

Nessus

Oval

References

Vulnerabilities > CVE-1999-0693