CVE-1999-1137Sunos vulnerability

4 documents4 sources
Severity
2.1LOWNVD
EPSS
0.1%
top 73.44%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Sunos
Timeline
PublishedOct 1
Latest updateApr 16

Description

The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

NVDsun/sunos5.2+2

Patches

Patch: sunsolve.sun.comPatch: www.ciac.orgPatch: sunsolve.sun.com

🔴Vulnerability Details

3
VulDB
Sun Solaris 2.2 Audio Device /dev/audio privileges management (XFDB-549 / OSVDB-6436)2026-04-16
GHSA
GHSA-whwh-8wm3-8f72: The permissions for the /dev/audio device on Solaris 22022-04-30
CVEList
CVE-1999-1137: The permissions for the /dev/audio device on Solaris 22002-03-09
CVE-1999-1137 — SUN Sunos vulnerability | cvebase