CVE-1999-0689

Published Sep 13, 1999

Last updated 6 years ago

Overview

Description: The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cde:cde:1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6527C0F-8052-438F-888D-44D67A9E0E6F"
          },
          {
            "criteria": "cpe:2.3:a:cde:cde:1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "500C3B15-B0E5-4DEE-80EC-A1A0418365A8"
          },
          {
            "criteria": "cpe:2.3:a:cde:cde:1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2B9A4891-EB12-490E-9BA0-4A14A551708E"
          },
          {
            "criteria": "cpe:2.3:a:cde:cde:1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0409D8C4-A512-492A-9093-CE1E78E1426E"
          },
          {
            "criteria": "cpe:2.3:a:cde:cde:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E01901D5-F582-443B-82A3-366EB5E29C61"
          },
          {
            "criteria": "cpe:2.3:a:cde:cde:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E4846EA2-0B0E-4EA1-A1B0-C998DD8F7635"
          },
          {
            "criteria": "cpe:2.3:a:cde:cde:2.120:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1B9337E-3AF1-4E76-BAC8-2B05A484C77D"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:sun:solaris:2.5:*:x86:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "200D8CB2-0D52-40A8-9CD9-6E4513605201"
          },
          {
            "criteria": "cpe:2.3:o:sun:solaris:2.5.1:*:x86:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F66BAF35-A8B9-4E95-B270-444206FDD35B"
          },
          {
            "criteria": "cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34EBF074-78C8-41AF-88F1-DA6726E56F8B"
          },
          {
            "criteria": "cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F1F312C-413F-4DB4-ABF4-48E33F6FECF2"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "369207B4-96FA-4324-9445-98FAE8ECF5DB"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5B72953B-E873-4E44-A3CF-12D770A0D416"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:5.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "39F847DB-65A9-47DA-BCFA-A179E5E2301A"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08003947-A4F1-44AC-84C6-9F8D097EB759"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References