CVE-1999-1158

Name of the Vulnerable Software and Affected Versions Solaris versions 2.3 through 2.5.1

Description A buffer overflow issue exists in the pluggable authentication module (PAM) and unix scheme, allowing local users to gain root privileges through programs that utilize these modules, such as passwd, yppasswd, and nispasswd.

Recommendations For Solaris versions 2.3 through 2.5.1, consider restricting access to the vulnerable modules until a patch is available. As a temporary workaround, avoid using programs that utilize the affected PAM and unix scheme modules, such as passwd, yppasswd, and nispasswd, to minimize the risk of exploitation.