CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-1999-1021

NFS on SunOS 4.1 through 4.1.2 ignores the high order 16 bits in a 32 bit UID, which allows a local user to gain root access if the lower 16 bits are set to 0, as fixed by the NFS jumbo patch upgrade.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.5%

CVSS Severity

CVSS v2 Score 7.2

References

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/117&type=0&nav=sec.sba
http://www.cert.org/advisories/CA-1992-15.html
http://www.securityfocus.com/bid/47
https://exchange.xforce.ibmcloud.com/vulnerabilities/82
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/117&type=0&nav=sec.sba
http://www.cert.org/advisories/CA-1992-15.html
http://www.securityfocus.com/bid/47
https://exchange.xforce.ibmcloud.com/vulnerabilities/82

Products affected by CVE-1999-1021

Sun » Sunos » Version: 4.1

cpe:2.3:o:sun:sunos:4.1
Sun » Sunos » Version: 4.1.1

cpe:2.3:o:sun:sunos:4.1.1
Sun » Sunos » Version: 4.1.2

cpe:2.3:o:sun:sunos:4.1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-1999-1021

Products

Pricing

Contact Us