CVE Vulnerabilities

CVE-1999-0786

Published: Sep 22, 1999 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.

Affected Software

Name Vendor Start Version End Version
Solaris Sun 2.4 (including) 2.4 (including)
Solaris Sun 2.5 (including) 2.5 (including)
Solaris Sun 2.5.1 (including) 2.5.1 (including)
Solaris Sun 2.6 (including) 2.6 (including)
Sunos Sun - (including) - (including)
Sunos Sun 5.4 (including) 5.4 (including)
Sunos Sun 5.5 (including) 5.5 (including)
Sunos Sun 5.5.1 (including) 5.5.1 (including)

References