Vulnerabilities > CVE-1999-1584 - Unspecified vulnerability in SUN Openwindows and Sunos

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

sun

critical

NVD

Published: 1999-12-31

Updated: 2008-09-05

Summary

Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586.

Vulnerable Configurations

Part	Description	Count
Application	Sun SUN Openwindows 3.0	1
OS	Sun SUN Sunos 4.1.1 SUN Sunos 4.1.2 SUN Sunos 4.1.3 SUN Sunos 4.1.3C	4

References

http://sunsolve.sun.com/search/document.do?assetkey=1-22-00124-1
http://www.cert.org/advisories/CA-1993-18.html