File Overwrite Vulnerability in Solaris Solstice AdminSuite by Sun Microsystems
CVE-1999-1426

Currently unrated

Key Information:

Vendor: Oracle
Status: Solstice Adminsuite
Vendor: CVE Published:; 10 November 1997

What is CVE-1999-1426?

The Solaris Solstice AdminSuite 2.1 has a vulnerability that allows local users to exploit the way symbolic links are followed when updating an NIS database. This can lead to unauthorized overwriting of arbitrary files, posing a significant risk to system integrity and data security. Users with local access can manipulate files by leveraging this flaw, creating potential avenues for further exploitation.

References

http://www.securityfocus.com/bid/208

vdb-entryx_refsource_BID

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&...

vendor-advisoryx_refsource_SUN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Aug 31, 2001
Vulnerability published
Nov 10, 1997

Oracle

What is CVE-1999-1426?

References

Timeline