Vulnerabilities > CVE-1999-1080 - Unspecified vulnerability in SUN Sunos 5.7

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

sun

NVD

Published: 1995-05-10

Updated: 2018-05-03

Summary

rmmount in SunOS 5.7 may mount file systems without the nosuid flag set, contrary to the documentation and its use in previous versions of SunOS, which could allow local users with physical access to gain root privileges by mounting a floppy or CD-ROM that contains a setuid program and running volcheck, when the file systems do not have the nosuid option specified in rmmount.conf.

Vulnerable Configurations

Part	Description	Count
OS	Sun SUN Sunos 5.7	1

References

http://marc.info/?l=bugtraq&m=92633694100270&w=2
http://marc.info/?l=bugtraq&m=93971288323395&w=2
http://www.securityfocus.com/bid/250
https://exchange.xforce.ibmcloud.com/vulnerabilities/8350