Unrated severityNVD Advisory· Published May 27, 1992· Updated Apr 16, 2026

CVE-1999-1142

Description

SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.

Affected products

Sun Corporation/Sunos
cpe:2.3:o:sun:sunos:*:*:*:*:*:*:*:*
Range: <=4.1.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cert.org/advisories/CA-1992-11.htmlnvdPatchThird Party AdvisoryUS Government Resource
sunsolve.sun.com/pub-cgi/retrieve.plnvd
exchange.xforce.ibmcloud.com/vulnerabilities/3152nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000