CVE-1999-0786

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Sep 22, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0786 is a vulnerability affecting the dynamic linker in Solaris operating systems. A local user can exploit this issue by creating a symlink in the LD_PROFILE environmental variable, which allows them to write arbitrary files to the system. This vulnerability poses a significant security risk, as it enables unauthorized file creation and potential system compromise. Users are advised to update their systems to patch this vulnerability promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Sun Solaris
SunOS

Affected Vendors

Oracle Corp
Sun.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlSPY
https://www.cve.org/CVERecord?id=CVE-1999-0786
https://nvd.nist.gov/vuln/detail/CVE-1999-0786

Back to Vulnerability Database