CVE Vulnerabilities

CVE-1999-1402

Published: May 17, 1997 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The access permissions for a UNIX domain socket are ignored in Solaris 2.x and SunOS 4.x, and other BSD-based operating systems before 4.4, which could allow local users to connect to the socket and possibly disrupt or control the operations of the program using that socket.

Affected Software

Name Vendor Start Version End Version
Freebsd Freebsd 3.1 3.1
Freebsd Freebsd 2.2.5 2.2.5
Solaris Sun 2.5.1 2.5.1
Solaris Sun 2.5.1 2.5.1
Solaris Sun 2.5 2.5
Freebsd Freebsd 2.2.2 2.2.2
Freebsd Freebsd 2.2.3 2.2.3
Sunos Sun 5.5 5.5
Freebsd Freebsd 2.2.8 2.2.8
Freebsd Freebsd 3.0 3.0
Freebsd Freebsd 2.2.4 2.2.4
Freebsd Freebsd 2.2.6 2.2.6
Sunos Sun 5.5.1 5.5.1
Sunos Sun 5.0 5.0
Sunos Sun 4.0 4.0
Solaris Sun 2.6 2.6
Sunos Sun - -

References