CVE-1999-1432

Published: Jul 16, 1998Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process until after the sys-suspend has completed, which allows an attacker with physical access to input characters to the last active application from the keyboard for a short period after the system is restoring, which could lead to increased privileges.

Affected (9)

Products: Sun: Solaris, Sunos

Sun

2 products

Solaris

Sunos

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Sun Solaris	Version 2.4
Sun Solaris	Version 2.5.1
Sun Solaris	Version 2.5.1
Sun Solaris	Version 2.5
Sun Solaris	Version 2.6
Sun Sunos	All versions
Sun Sunos	Version 5.4
Sun Sunos	Version 5.5.1
Sun Sunos	Version 5.5

References (4)

http://marc.info/?l=bugtraq&m=90221104525997&w=2

Source: cve@mitre.org

http://www.securityfocus.com/bid/160

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=90221104525997&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/160

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.