PT-1992-1004 · Sun · Sunos

Published

1992-12-30

Updated

2017-10-10

CVE-1999-1021

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions SunOS versions 4.1 through 4.1.2

Description The issue allows a local user to gain root access by exploiting the fact that NFS ignores the high order 16 bits in a 32 bit UID. This can be achieved if the lower 16 bits are set to 0.

Recommendations For SunOS versions 4.1 through 4.1.2, apply the NFS jumbo patch upgrade to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1021

Affected Products

Sunos

PT-1992-1004 · Sun · Sunos

CVE-1999-1021

Related Identifiers

Affected Products

References · 5