CVE-1999-1425Solstice Adminsuite vulnerability

4 documents4 sources
Severity
6.2MEDIUMNVD
EPSS
0.0%
top 91.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Solstice Adminsuite
Timeline
PublishedNov 10
Latest updateApr 17

Description

Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd.

CVSS vector

AV:L/AC:H/C:C/I:C/A:CExploitability: 1.9 | Impact: 10.0

Affected Packages1 packages

NVDsun/solstice_adminsuite2.1, 2.2+1

Patches

Patch: sunsolve.sun.comPatch: www.securityfocus.comPatch: sunsolve.sun.com

🔴Vulnerability Details

3
VulDB
Sun Solaris 2.4/2.5/2.5.1 Solstice AdminSuite /etc/passwd privileges management (ID 00145 / BID-208)2026-04-17
GHSA
GHSA-frq9-hfh5-8mmm: Solaris Solstice AdminSuite (AdminSuite) 22022-04-30
CVEList
CVE-1999-1425: Solaris Solstice AdminSuite (AdminSuite) 22001-09-12
CVE-1999-1425 — SUN Solstice Adminsuite vulnerability | cvebase