Vulnerability Description
Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root privileges via environment variables, a different vulnerability than CVE-1999-1586.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Openwindows | 3.0 |
| Sun | Sunos | 4.1.1 |
References
- http://sunsolve.sun.com/search/document.do?assetkey=1-22-00124-1PatchVendor Advisory
- http://www.cert.org/advisories/CA-1993-18.htmlPatchThird Party AdvisoryUS Government Resource
- http://sunsolve.sun.com/search/document.do?assetkey=1-22-00124-1PatchVendor Advisory
- http://www.cert.org/advisories/CA-1993-18.htmlPatchThird Party AdvisoryUS Government Resource
FAQ
What is CVE-1999-1584?
CVE-1999-1584 is a vulnerability with a CVSS score of 10.0 (HIGH). Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 through 4.1.3c, and Open Windows 3.0, allows local users to gain root pri...
How severe is CVE-1999-1584?
CVE-1999-1584 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1584?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Openwindows, Sun Sunos.