Lucene search

MitreCVE-1999-0691

HistoryJan 04, 2000 - 5:00 a.m.

CVE-1999-0691

2000-01-0405:00:00

mitre

web.nvd.nist.gov

cde dtaction

buffer overflow

gain root privileges

cve-1999-0691

nvd

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.2

Confidence

High

EPSS

Percentile

0.4%

JSON

Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.

Affected configurations

Nvd

Node

cdecdeMatch1.0.1

cdecdeMatch1.0.2

cdecdeMatch1.1

cdecdeMatch1.2

cdecdeMatch2.0

cdecdeMatch2.1

Node

digitalunixMatch4.0d

digitalunixMatch4.0e

digitalunixMatch4.0f

ibmaixMatch4.1

ibmaixMatch4.1.1

ibmaixMatch4.1.2

ibmaixMatch4.1.3

ibmaixMatch4.1.4

ibmaixMatch4.1.5

ibmaixMatch4.2

ibmaixMatch4.2.1

ibmaixMatch4.3

ibmaixMatch4.3.1

ibmaixMatch4.3.2

sunsolarisMatch2.4x86

sunsolarisMatch2.5.1x86

sunsolarisMatch2.6

sunsolarisMatch7.0x86

sunsunosMatch5.4

sunsunosMatch5.5

sunsunosMatch5.5.1

sunsunosMatch5.7

VendorProductVersionCPE
cdecde1.0.1cpe:2.3:a:cde:cde:1.0.1:*:*:*:*:*:*:*
cdecde1.0.2cpe:2.3:a:cde:cde:1.0.2:*:*:*:*:*:*:*
cdecde1.1cpe:2.3:a:cde:cde:1.1:*:*:*:*:*:*:*
cdecde1.2cpe:2.3:a:cde:cde:1.2:*:*:*:*:*:*:*
cdecde2.0cpe:2.3:a:cde:cde:2.0:*:*:*:*:*:*:*
cdecde2.1cpe:2.3:a:cde:cde:2.1:*:*:*:*:*:*:*
digitalunix4.0dcpe:2.3:o:digital:unix:4.0d:*:*:*:*:*:*:*
digitalunix4.0ecpe:2.3:o:digital:unix:4.0e:*:*:*:*:*:*:*
digitalunix4.0fcpe:2.3:o:digital:unix:4.0f:*:*:*:*:*:*:*
ibmaix4.1cpe:2.3:o:ibm:aix:4.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cde	cde	1.0.1	cpe:2.3:a:cde:cde:1.0.1:::::::*
cde	cde	1.0.2	cpe:2.3:a:cde:cde:1.0.2:::::::*
cde	cde	1.1	cpe:2.3:a:cde:cde:1.1:::::::*
cde	cde	1.2	cpe:2.3:a:cde:cde:1.2:::::::*
cde	cde	2.0	cpe:2.3:a:cde:cde:2.0:::::::*
cde	cde	2.1	cpe:2.3:a:cde:cde:2.1:::::::*
digital	unix	4.0d	cpe:2.3:o:digital:unix:4.0d:::::::*
digital	unix	4.0e	cpe:2.3:o:digital:unix:4.0e:::::::*
digital	unix	4.0f	cpe:2.3:o:digital:unix:4.0f:::::::*
ibm	aix	4.1	cpe:2.3:o:ibm:aix:4.1:::::::*

Rows per page:

1-10 of 281

References

sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192

www.securityfocus.com/bid/635

www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3078

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.2

Confidence

High

EPSS

Percentile

0.4%

JSON

Related for CVE-1999-0691