CVE-1999-1080

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published May 10, 1995

Updated: Nov 20, 2024

Summary

CVE-1999-1080 is a vulnerability affecting SunOS 5.7's rmount utility. Contrary to documentation and earlier versions, rmount may mount file systems without the nosuid flag, which is intended to prevent the execution of setuid programs. This oversight allows local users with physical access to potentially gain root privileges by mounting a floppy or CD-ROM that contains a setuid program and executing volcheck on unsecured file systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SunOS

Affected Vendors

Oracle Corp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlXDy
https://www.cve.org/CVERecord?id=CVE-1999-1080
https://nvd.nist.gov/vuln/detail/CVE-1999-1080

Back to Vulnerability Database