CVE-1999-1318

Summary

CVE-1999-1318 is a vulnerability affecting the SunOS 4.1.3 and earlier versions. The issue lies in the /usr/5bin/su command, which includes the current working directory in its search path. This configuration error allows local users to execute Trojan horse programs with elevated privileges, potentially leading to unauthorized system access. The vulnerability can be exploited by placing a malicious file in the current working directory and then using a specially crafted command to trick the su command into executing the file with root permissions. This weakness can have serious consequences, including data theft, system damage, or unauthorized system control. To mitigate this risk, it is recommended to update to a newer version of SunOS or implement stricter file permission policies to prevent unauthorized access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.