CVE-1999-1580

{"id": "CVE-1999-1580", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "1995-08-23T04:00:00.000", "references": [{"url": "http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.html", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "http://www.auscert.org.au/render.html?it=1853&cid=1978", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vul", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.kb.cert.org/vuls/id/3278", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/7829", "source": "cve@mitre.org"}, {"url": "http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.html", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.auscert.org.au/render.html?it=1853&cid=1978", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vul", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.kb.cert.org/vuls/id/3278", "tags": ["Third Party Advisory", "US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/7829", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option."}], "lastModified": "2024-11-20T23:31:27.463", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sendmail:sendmail:5.59:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5DFC5B8B-9102-46A9-9BD3-5CC0B671383F"}, {"criteria": "cpe:2.3:a:sendmail:sendmail:5.61:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "51BC02ED-17B1-44B3-97DB-F626A2BD2524"}, {"criteria": "cpe:2.3:a:sendmail:sendmail:5.65:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF58EBCB-5735-4569-957D-C37CC38F0823"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sun:sunos:4.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92B19A06-832D-4974-9D08-2CE787228592"}, {"criteria": "cpe:2.3:o:sun:sunos:4.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3A07C67-66FB-4ECF-BECB-C2BE72A80F3B"}, {"criteria": "cpe:2.3:o:sun:sunos:4.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "615FA6E4-4DE0-422A-9220-F747D95192C9"}, {"criteria": "cpe:2.3:o:sun:sunos:4.1.3c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "915D5897-B5FF-4F26-936E-9BAEF2604A86"}, {"criteria": "cpe:2.3:o:sun:sunos:4.1.3u1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD1BA107-F2D3-4F13-82EC-4576C429E3C1"}, {"criteria": "cpe:2.3:o:sun:sunos:4.1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1070749A-65E9-439A-A7CC-3CE529A5D5E7"}, {"criteria": "cpe:2.3:o:sun:sunos:4.1.4jl:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "44F62CC9-2145-4801-9C3E-4D7232E6BD68"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}