CVE-1999-1424Solstice Adminsuite vulnerability

4 documents4 sources
Severity
6.2MEDIUMNVD
EPSS
0.0%
top 91.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Solstice Adminsuite
Timeline
PublishedNov 10
Latest updateApr 17

Description

Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table entries.

CVSS vector

AV:L/AC:H/C:C/I:C/A:CExploitability: 1.9 | Impact: 10.0

Affected Packages1 packages

NVDsun/solstice_adminsuite2.1, 2.2+1

Patches

Patch: sunsolve.sun.comPatch: www.securityfocus.comPatch: sunsolve.sun.com

🔴Vulnerability Details

3
VulDB
Sun Solaris 2.4/2.5/2.5.1 Solstice AdminSuite privileges management (ID 00145 / BID-208)2026-04-17
GHSA
GHSA-c44g-fjhj-p52w: Solaris Solstice AdminSuite (AdminSuite) 22022-04-30
CVEList
CVE-1999-1424: Solaris Solstice AdminSuite (AdminSuite) 22001-09-12
CVE-1999-1424 — SUN Solstice Adminsuite vulnerability | cvebase