CVE-1999-1026

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Dec 20, 1996

Updated: Nov 20, 2024

Summary

CVE-1999-1026 is a vulnerability affecting the aspppd daemon on Solaris 2.5 x86 systems. Hackers can exploit this weakness by creating a symlink (symbolic link) to the /tmp/.asppp.fifo file, manipulating its target to point to any arbitrary file. With successful exploitation, local users are granted root privileges, posing a significant threat to system security.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Solaris

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlUBA
https://www.cve.org/CVERecord?id=CVE-1999-1026
https://nvd.nist.gov/vuln/detail/CVE-1999-1026

Back to Vulnerability Database