CVE-1999-0185 — Solaris vulnerability

4 documents4 sources

Severity

7.5HIGHNVD

EPSS

1.5%

top 18.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SUN Solaris SUN Sunos

Timeline

PublishedOct 1

Latest updateApr 17

Description

In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDsun/sunos6 versions+5

▶NVDsun/solaris2.4, 2.5, 2.5.1+2

🔴Vulnerability Details

VulDB

Sun Solaris 2.3/2.4/2.5/2.5.1 FTP Server privileges management (ID 00156 / ID 27258)↗2026-04-17

▶

GHSA

GHSA-gcg2-8wmh-x2h4: In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing rem↗2022-04-30

▶

CVEList

CVE-1999-0185: In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing rem↗1999-09-29

▶