Vulnerabilities > CVE-1999-1026 - Unspecified vulnerability in SUN Solaris 2.4/2.5/2.5.1

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
sun
exploit available
NVD
Published: 1996-12-20
Updated: 2016-10-18

Summary

aspppd on Solaris 2.5 x86 allows local users to modify arbitrary files and gain root privileges via a symlink attack on the /tmp/.asppp.fifo file.

Vulnerable Configurations

Part Description Count
OS
Sun
3

Exploit-Db

descriptionSolaris 7.0 aspppd Insecure Temporary File Creation Vulnerability. CVE-1999-1026. Local exploit for solaris platform
idEDB-ID:19233
last seen2016-02-02
modified1996-12-20
published1996-12-20
reporterAl-Herbish
sourcehttps://www.exploit-db.com/download/19233/
titleSolaris <= 7.0 aspppd Insecure Temporary File Creation Vulnerability

References