Published: 22/09/1999 Updated: 30/10/2018

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

VMScore: 465

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

The dynamic linker in Solaris allows a local user to create arbitrary files via the LD_PROFILE environmental variable and a symlink attack.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun solaris 2.4
sun sunos 5.5
sun sunos 5.5.1
sun solaris 2.5.1
sun sunos 5.4
sun solaris 2.5
sun sunos -
sun solaris 2.6

source: wwwsecurityfocuscom/bid/659/info A vulnerability in the dynamic linkers while profiling a shared object allows local users to create arbitrary files in the system It canno't be used to overwrite existing files If the LD_PROFILE environment variable is defined it instructs the dynamic linker to profile the shared object defined ...

NVD-CWE-Other http://www.securityfocus.com/bid/659 https://nvd.nist.gov https://www.exploit-db.com/exploits/19509/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-1999-0786

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect