CVE-1999-1137

Name of the Vulnerable Software and Affected Versions Solaris versions 2.2 and earlier SunOS versions 4.1.x

Description The issue allows any local user to read from the /dev/audio device, potentially enabling an attacker to monitor conversations near a machine with a microphone.

Recommendations For Solaris versions 2.2 and earlier, consider restricting access to the /dev/audio device to prevent unauthorized reading. For SunOS versions 4.1.x, restrict access to the /dev/audio device to minimize the risk of exploitation. As a temporary workaround, consider disabling the microphone or restricting access to the /dev/audio device until a more permanent solution is available.