Security Advisory

CVE-1999-1413

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2001-09-12 04:00:00

Last updated 2024-08-01 19:40:14

Assigner mitre

State PUBLISHED

Description

Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg.

← Browse all CVEs View on cve.org ↗