| Vulnerability Name: | CVE-1999-1392 (CCN-7144) | ||||||||
| Assigned: | 1990-10-03 | ||||||||
| Published: | 1990-10-03 | ||||||||
| Updated: | 2008-09-05 | ||||||||
| Summary: | Vulnerability in restore0.9 installation script in NeXT 1.0a and 1.0 allows local users to gain root privileges. | ||||||||
| CVSS v3 Severity: | 9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Privileges | ||||||||
| References: | Source: CCN Type: CIAC Information Bulletin B-01 Security Problem on the NeXT Operating System Source: CIAC Type: Patch, Vendor Advisory B-01 Source: MITRE Type: CNA CVE-1999-1392 Source: CCN Type: CERT Advisory CA-1990-06 NeXT's System Software Source: CERT Type: Patch, Third Party Advisory, US Government Resource CA-1990-06 Source: XF Type: UNKNOWN nextstep-restore09-root-access(7144) Source: CCN Type: OSVDB ID: 8769 NeXTstep restore0.9 Script Local Privilege Escalation Source: BID Type: Patch, Vendor Advisory 9 Source: CCN Type: BID-9 NeXTstep /usr/etc/restore0.9 suid shell script Vulnerability Source: XF Type: UNKNOWN nextstep-restore09-root-access(7144) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||