Published: 01/12/1999 Updated: 30/10/2018

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 215

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun solaris 2.6
sun sunos -
sun sunos 5.5.1
sun solaris 2.5.1
sun sunos 5.7
sun solaris 7.0

source: wwwsecurityfocuscom/bid/295/info Solaris 24, 25, and 251 (possibly other versions) have a package called FACE (Framed Access Command Environment) installed Included in the package is a program called chkperm which checks a file to see if the user has permission to use the FACE interface This program is installed suid and sgi ...

NVD-CWE-Other http://www.securityfocus.com/bid/837 https://nvd.nist.gov https://www.exploit-db.com/exploits/19235/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-1999-0860

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect