CVE-1999-1584

CVSS 2.0 Score 10 of 10 (high)

Details

Published Dec 31, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1584 is a security vulnerability affecting SunOS 4.1.1 to 4.1.3c and Open Windows 3.0. The issue lies in the loadmodule and modload functions, which if installed with setuid/setgid privileges, can be exploited by local users to elevate their privileges to root level. This is accomplished through manipulation of environment variables, which represents a different vulnerability than CVE-1999-1586.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SunOS

Affected Vendors

Oracle Corp
Sun.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlTIH
https://www.cve.org/CVERecord?id=CVE-1999-1584
https://nvd.nist.gov/vuln/detail/CVE-1999-1584

Back to Vulnerability Database