2 matches found
CVE-1999-0138
CVE-1999-0138 affects the suidperl and sperl programs, which do not relinquish root privileges when reverting UIDs to the original user. This can grant root access with impact on confidentiality, integrity, and availability as described (local, low complexity, no auth required). The vulnerability...
CVE-1999-1102
The CVE-1999-1102 entry concerns lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1 and other BSD-based systems. The vulnerability arises from a symlink-related attack in lpr that enables local users to create or overwrite arbitrary files after the program is invoked 1000 times. Root cause is a symlink hand...