CVE-1999-1413
— NVD-CWE-Other
- Published: 1996-08-03T04:00:00.000
- Last modified: 2025-04-03T01:03:51.193
- CWE: NVD-CWE-Other
CVE-1999-1413 — Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg. [Weakness: NVD-CWE-Other]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No vendor taxonomy on this entry.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg.
🧠 Explainer: What this vulnerability means
Summary: A flaw in the product from the vendor (CWE: unspecified) can be exploited.
Impact: Systems could be compromised, leading to confidentiality, integrity, or availability loss.
Mitigation: Upgrade immediately to the remediated release and follow vendor hardening guidance.
No vendor/product data yet.
- http://marc.info/?l=bugtraq&m=87602167419549&w=2 []
- http://www.securityfocus.com/bid/296 [Exploit, Patch, Vendor Advisory]
- http://marc.info/?l=bugtraq&m=87602167419549&w=2 []
- http://www.securityfocus.com/bid/296 [Exploit, Patch, Vendor Advisory]