CVE-1999-0295

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Oct 1, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-0295 is a vulnerability affecting the Solaris operating system. This issue lies in the sysdef command, which provides local users with the ability to read kernel memory. Successful exploitation of this vulnerability could grant attackers potential root privileges, posing a significant security risk. The sysdef command should be restricted to trusted users or disabled to mitigate this threat. This vulnerability was identified and documented over two decades ago but remains relevant as many systems may still be running unpatched or outdated versions of Solaris.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SunOS

Affected Vendors

Oracle Corp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlTZr
https://www.cve.org/CVERecord?id=CVE-1999-0295
https://nvd.nist.gov/vuln/detail/CVE-1999-0295

Back to Vulnerability Database