exploitDog

CVE-1999-1025

Опубликовано: 12 нояб. 1998

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.

Ссылки

http://marc.info/?l=bugtraq&m=90831127921062&w=2
http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fpatches%2F106027&zone_32=411568%2A%20
Patch
Vendor Advisory
http://www.securityfocus.com/bid/294
Patch
Vendor Advisory
http://marc.info/?l=bugtraq&m=90831127921062&w=2
http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fpatches%2F106027&zone_32=411568%2A%20
Patch
Vendor Advisory
http://www.securityfocus.com/bid/294
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*

cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:*

cpe:2.3:o:sun:sunos:5.6:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00074

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-8gcf-xxjr-4rj6

github

больше 3 лет назад

CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user's console session when the host is an NIS+ client, which allows others with physical access to login with any string.

EPSS

Процентиль: 23%

0.00074

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other