Lucene search

[email protected]CVE-1999-1025

HistoryNov 12, 1998 - 5:00 a.m.

CVE-1999-1025

1998-11-1205:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-1999-1025

cde screenlock vulnerability

solaris 2.6

nis+ issue

unauthorized access.

7.1 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

68.9%

JSON

CDE screen lock program (screenlock) on Solaris 2.6 does not properly lock an unprivileged user’s console session when the host is an NIS+ client, which allows others with physical access to login with any string.

CPENameOperatorVersion
sun:sunossun sunoseq5.6
sun:solarissun solariseq2.6
sun:sunossun sunoseq-

CPE	Name	Operator	Version
sun:sunos	sun sunos	eq	5.6
sun:solaris	sun solaris	eq	2.6
sun:sunos	sun sunos	eq	-

References

marc.info/?l=bugtraq&m=90831127921062&w=2

sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fpatches%2F106027&zone_32=411568%2A%20

www.securityfocus.com/bid/294

7.1 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

68.9%

JSON

Related for CVE-1999-1025

cvelist1