← CVECheck
HomeVulnerabilities

CVE-1999-1413 — MEDIUM severity vulnerability (Solaris 2.4 before kernel jumbo patch -35 allows set-gid pro)

Solaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg.

CVE IDCVE-1999-1413
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published1996-08-03
Last modified2026-04-16
DescriptionSolaris 2.4 before kernel jumbo patch -35 allows set-gid programs to dump core even if the real user id is not in the set-gid group, which allows local users to overwrite or create files at higher privileges by causing a core dump, e.g. through dmesg.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →