CVE-1999-1137
CVSS 2.0 Score 2.1 of 10 (low)
Details
Summary
CVE-1999-1137 is a vulnerability affecting Solaris 2.2 and earlier, as well as SunOS 4.1.x. This issue arises from permissive read access to the /dev/audio device. An attacker can exploit this vulnerability by gaining local access to the system and monitoring conversations happening in the vicinity of the affected machine, which may have a microphone. The implications of this vulnerability are significant for organizations with potential eavesdropping risks, as it allows unauthorized access to sensitive audio information. The vulnerability can be mitigated by implementing proper access control measures to restrict read access to the /dev/audio device only to authorized users.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Sun Solaris
- SunOS
- Solaris
Affected Vendors
- Oracle Corp
- BonqDAO
- Sun.