CVE-1999-1425

Description

Solaris Solstice AdminSuite (AdminSuite) 2.1 incorrectly sets write permissions on source files for NIS maps, which could allow local users to gain privileges by modifying /etc/passwd.

Affected products

• sun / solstice_adminsuite2.1 – 2.1
• sun / solstice_adminsuite2.1 – 2.1
• sun / solstice_adminsuite2.2 – 2.2
• sun / solstice_adminsuite2.2 – 2.2

References

• MISChttp://www.securityfocus.com/bid/208
• MISChttp://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/145