VYPR
Unrated severityNVD Advisory· Published May 27, 1992· Updated Jun 16, 2026

CVE-1999-1142

CVE-1999-1142

Description

SunOS 4.1.2 and earlier allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.

Affected products

2
  • cpe:2.3:o:sun:sunos:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:sun:sunos:*:*:*:*:*:*:*:*range: <=4.1.2
    • (no CPE)range: <=4.1.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.