CVE Vulnerabilities

CVE-1999-1318

Published: Sep 17, 1993 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

/usr/5bin/su in SunOS 4.1.3 and earlier uses a search path that includes the current working directory (.), which allows local users to gain privileges via Trojan horse programs.

Affected Software

Name Vendor Start Version End Version
Sunos Sun 4.1.1 4.1.1
Sunos Sun 4.1.2 4.1.2
Sunos Sun * 4.1.3
Sunos Sun 4.1.3c 4.1.3c

References