Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-1999-1413

Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg.

  • Published: Aug 3, 1996
  • Updated: Apr 13, 2023
  • CVE: CVE-1999-1413
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
sun / solaris 2.4 2.4.x
sun / sunos 5.4 5.4.x