SunOS <= 4.1.3 LD_LIBRARY_PATH and LD_OPTIONS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/43/info There exists a vulnerability involving environment variables and setuid/setgid programs under SunOS 4.0 and higher. A dynamically-linked program that is invoked by a setuid/setgid program has access to the caller'...

CVE-1999-1318

CVE-1999-1318 affects SunOS 4.1.3 and earlier. The vulnerable component is /usr/5bin/su , which uses a search path that includes the current working directory (.). This allows local users to gain privileges via Trojan horse programs. The description clearly states a local privilege escalation and...