CyberSec.Space Logo
Back to CVE Browser

CVE-1999-1297

LOW
2.1
CVSS Severity Score
EPSS Score0.1520%
EPSS Percentile42.05th
PublishedJul 15, 1998
Last ModifiedApr 16, 2026

Vulnerability Description

cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical access to the system to display unechoed characters (such as those from password prompts) via the L2/AGAIN key.

Affected Platforms (CPE)

πŸ’»
Sun

Sunos

All versions
πŸ’»
Sun

Sunos

= 4.1
πŸ’»
Sun

Sunos

= 4.1.1
πŸ’»
Sun

Sunos

= 4.1.2
πŸ’»
Sun

Sunos

= 4.1.3
πŸ’»
Sun

Sunos

= 4.1.4

References & Advisories

πŸ”— http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fpatches%2F100452&zone_32=10045%2A%20
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/7482
πŸ”— http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fpatches%2F100452&zone_32=10045%2A%20
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/7482

Related Vulnerabilities

CVE-2007-088210.0

Argument injection vulnerability in the telnet daemon (in.telnetd) in Solaris 10 and 11 (SunOS 5.10 and 5.11) misinterprets certai...

CVE-1999-158410.0

Unknown vulnerability in (1) loadmodule, and (2) modload if modload is installed with setuid/setgid privileges, in SunOS 4.1.1 thr...

CVE-1999-146710.0

Vulnerability in rcp on SunOS 4.0.x allows remote attackers from trusted hosts to execute arbitrary commands as root, possibly rel...

CVE-1999-03209.3

SunOS rpc.cmsd allows attackers to obtain root access by overwriting arbitrary files.