CVE-1999-1426

Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sun:solstice_adminsuite:2.1:*:*:*:*:*:*:*
cpe:2.3:a:sun:solstice_adminsuite:2.1:*:x86:*:*:*:*:*
cpe:2.3:a:sun:solstice_adminsuite:2.2:*:*:*:*:*:*:*
cpe:2.3:a:sun:solstice_adminsuite:2.2:*:x86:*:*:*:*:*

History

20 Nov 2024, 23:31

Type Values Removed Values Added
References () http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/145 - Patch, Vendor Advisory () http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/145 - Patch, Vendor Advisory
References () http://www.securityfocus.com/bid/208 - Patch, Vendor Advisory () http://www.securityfocus.com/bid/208 - Patch, Vendor Advisory

Information

Published : 1997-11-10 05:00

Updated : 2024-11-20 23:31


NVD link : CVE-1999-1426

Mitre link : CVE-1999-1426

CVE.ORG link : CVE-1999-1426


JSON object : View

Products Affected

sun

  • solstice_adminsuite