CyberSec.Space Logo
Back to CVE Browser

CVE-1999-0185

HIGH
7.5
CVSS Severity Score
EPSS Score0.0770%
EPSS Percentile25.05th
PublishedOct 1, 1997
Last ModifiedApr 16, 2026

Vulnerability Description

In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.

Affected Platforms (CPE)

πŸ’»
Sun

Solaris

= 2.4
πŸ’»
Sun

Solaris

= 2.5
πŸ’»
Sun

Solaris

= 2.5.1
πŸ’»
Sun

Sunos

= 4.1.3u1
πŸ’»
Sun

Sunos

= 4.1.4
πŸ’»
Sun

Sunos

= 5.3
πŸ’»
Sun

Sunos

= 5.4
πŸ’»
Sun

Sunos

= 5.5
πŸ’»
Sun

Sunos

= 5.5.1

References & Advisories

πŸ”— http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/156
πŸ”— http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/156

Related Vulnerabilities

CVE-1999-056810.0

rpc.admind in Solaris is not running in a secure mode.

CVE-1999-097310.0

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is runn...

CVE-2020-1487110.0

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Supported versions tha...

CVE-1999-097410.0

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.