CVE-1999-1428
CVSS 2.0 Score 6.2 of 10 (medium)
Details
Summary
CVE-1999-1428 is a vulnerability affecting the Solaris Solstice AdminSuite (AdminSuite) versions 2.1 and 2.2. This issue grants local users elevated privileges through the save option in the Database Manager, which runs with setgid bin permissions. By exploiting this vulnerability, an attacker can bypass restrictions and gain administrative access to the system, potentially leading to serious data compromise or system manipulation. This vulnerability could be exploited by a local user without requiring network access or complex exploits. administrators are advised to update to a patched version of AdminSuite to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Sun.