Vulnerabilities > CVE-1999-1158 - Unspecified vulnerability in SUN Sunos

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

sun

exploit available

NVD

Published: 1997-05-13

Updated: 2018-10-30

Summary

Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd.

Vulnerable Configurations

Part	Description	Count
OS	Sun SUN Sunos 5.3 SUN Sunos 5.4 SUN Sunos 5.5 SUN Sunos 5.5.1	4

Exploit-Db

description	Sun Solaris 2.5.1 PAM & unix_scheme Vulnerability. CVE-1999-1158. Local exploit for solaris platform
id	EDB-ID:19158
last seen	2016-02-02
modified	1997-02-25
published	1997-02-25
reporter	Cristian Schipor
source	https://www.exploit-db.com/download/19158/
title	Sun Solaris <= 2.5.1 PAM & unix_scheme Vulnerability

description	Solaris 2.4 passwd, yppasswd, and nispasswd Overflow Exploits. CVE-1999-1158. Local exploit for solaris platform
id	EDB-ID:341
last seen	2016-01-31
modified	1997-07-12
published	1997-07-12
reporter	Cristian Schipor
source	https://www.exploit-db.com/download/341/
title	Solaris 2.4 - passwd & yppasswd & nispasswd Overflow Exploits

Summary

Vulnerable Configurations

Exploit-Db

References