CVE-1999-0860
CVSS 2.0 Score 2.1 of 10 (low)
Details
Published Dec 1, 1999
Updated: Oct 30, 2018
Summary
CVE-1999-0860 is a vulnerability affecting the Solaris operating system. This issue allows local users to read files owned by the bin user, bypassing intended access controls. The vulnerability is triggered through a symlink attack on the VMSYS environmental variable in the Solaris chkperm utility. This weakness can potentially lead to unauthorized access to sensitive data, making it a significant security concern for Solaris systems. System administrators are advised to apply the available patch to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Sun Solaris
- SunOS
Affected Vendors
- Oracle Corp
- Sun.