CVE-1999-1137

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Oct 1, 1993
Updated: Oct 30, 2018

Summary

CVE-1999-1137 is a vulnerability affecting Solaris 2.2 and earlier, as well as SunOS 4.1.x. This issue arises from permissive read access to the /dev/audio device. An attacker can exploit this vulnerability by gaining local access to the system and monitoring conversations happening in the vicinity of the affected machine, which may have a microphone. The implications of this vulnerability are significant for organizations with potential eavesdropping risks, as it allows unauthorized access to sensitive audio information. The vulnerability can be mitigated by implementing proper access control measures to restrict read access to the /dev/audio device only to authorized users.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Sun Solaris
  • SunOS
  • Solaris

Affected Vendors

  • Oracle Corp
  • BonqDAO
  • Sun.