CVE-1999-1021

Name of the Vulnerable Software and Affected Versions SunOS versions 4.1 through 4.1.2

Description The issue allows a local user to gain root access by exploiting the fact that NFS ignores the high order 16 bits in a 32 bit UID. This can be achieved if the lower 16 bits are set to 0.

Recommendations For SunOS versions 4.1 through 4.1.2, apply the NFS jumbo patch upgrade to resolve the issue.