Vulnerabilities > CVE-1999-1425 - Unspecified vulnerability in SUN Solstice Adminsuite 2.1/2.2

CVSS 6.2 - MEDIUM

Attack vector

LOCAL

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

high complexity

sun

NVD

Published: 1997-11-10

Updated: 2011-03-08

Summary

Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd.

Vulnerable Configurations

Part	Description	Count
Application	Sun SUN Solstice Adminsuite 2.1 SUN Solstice Adminsuite 2.2	4

References

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/145
http://www.securityfocus.com/bid/208