CVE-1999-0860

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Dec 1, 1999
Updated: Oct 30, 2018

Summary

CVE-1999-0860 is a vulnerability affecting the Solaris operating system. This issue allows local users to read files owned by the bin user, bypassing intended access controls. The vulnerability is triggered through a symlink attack on the VMSYS environmental variable in the Solaris chkperm utility. This weakness can potentially lead to unauthorized access to sensitive data, making it a significant security concern for Solaris systems. System administrators are advised to apply the available patch to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Sun Solaris
  • SunOS

Affected Vendors

  • Oracle Corp
  • Sun.