Vulnerabilities (CVE)

Filtered by vendor Sun Subscribe
Filtered by product Solstice Adminsuite
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-1426 1 Sun 1 Solstice Adminsuite 2023-12-10 6.2 MEDIUM N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 follows symbolic links when updating an NIS database, which allows local users to overwrite arbitrary files.
CVE-1999-1425 1 Sun 1 Solstice Adminsuite 2023-12-10 6.2 MEDIUM N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd.
CVE-1999-1428 1 Sun 1 Solstice Adminsuite 2023-12-10 6.2 MEDIUM N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 allows local users to gain privileges via the save option in the Database Manager, which is running with setgid bin privileges.
CVE-1999-1424 1 Sun 1 Solstice Adminsuite 2023-12-10 6.2 MEDIUM N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 uses unsafe permissions when adding new users to the NIS+ password table, which allows local users to gain root access by modifying their password table entries.
CVE-1999-1427 1 Sun 1 Solstice Adminsuite 2023-12-10 6.2 MEDIUM N/A
Solaris Solstice AdminSuite (AdminSuite) 2.1 and 2.2 create lock files insecurely, which allows local users to gain root privileges.