CVE-1999-1426Solstice Adminsuite vulnerability

4 documents4 sources
Severity
6.2MEDIUMNVD
EPSS
0.0%
top 87.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN Solstice Adminsuite
Timeline
PublishedNov 10
Latest updateApr 17

Description

Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files.

CVSS vector

AV:L/AC:H/C:C/I:C/A:CExploitability: 1.9 | Impact: 10.0

Affected Packages1 packages

NVDsun/solstice_adminsuite2.1, 2.2+1

Patches

Patch: sunsolve.sun.comPatch: www.securityfocus.comPatch: sunsolve.sun.com

🔴Vulnerability Details

3
VulDB
Sun Solaris 2.4/2.5/2.5.1 Solstice AdminSuite privileges management (ID 00145 / BID-208)2026-04-17
GHSA
GHSA-552p-f4h5-wjj9: Solaris Solstice AdminSuite (AdminSuite) 22022-04-30
CVEList
CVE-1999-1426: Solaris Solstice AdminSuite (AdminSuite) 22001-09-12