CVE-1999-0120

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Mar 21, 1994

Updated: Nov 20, 2024

Summary

CVE-1999-0120 is a vulnerability affecting Sun/Solaris systems. This issue arises from the writable utmp file, which is not intended to be modifiable by users other than the root account. An attacker who can write to the utmp file may craft a malicious entry that grants root access upon system login, enabling unauthorized escalation of privileges. This vulnerability poses a significant risk and should be addressed promptly by system administrators. To mitigate the threat, ensure that the utmp file is only writable by the root user.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SunOS

Affected Vendors

Oracle Corp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlKDt
https://www.cve.org/CVERecord?id=CVE-1999-0120
https://nvd.nist.gov/vuln/detail/CVE-1999-0120

Back to Vulnerability Database