CVE-1999-1253 - Vulnerability Details - OpenCVE

Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root privileges.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Sco	Internet Faststart Openserver

Configuration 1 [-]

OR	cpe:2.3:o:sco:internet_faststart:1.0:::::::*
	cpe:2.3:o:sco:openserver::::::::
	cpe:2.3:o:sco:openserver:5.0:::::::*

No data.

References

Link	Providers
ftp://ftp.sco.com/SSE/security_bulletins/SB.96:01a
http://www.cert.org/vendor_bulletins/VB-96.10.sco
https://exchange.xforce.ibmcloud.com/vulnerabilities/1965

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2001-09-12T04:00:00

Updated: 2024-08-01T17:02:53.874Z

Reserved: 2001-08-31T00:00:00

Link: CVE-1999-1253

Vulnrichment

No data.

NVD

Status : Deferred

Published: 1996-06-07T04:00:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-1999-1253

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "1996-06-07T00:00:00", "descriptions": [{"lang": "en", "value": "Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root privileges."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-12-18T21:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "VB-96.10", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.cert.org/vendor_bulletins/VB-96.10.sco"}, {"name": "96:001", "tags": ["vendor-advisory", "x_refsource_SCO"], "url": "ftp://ftp.sco.com/SSE/security_bulletins/SB.96:01a"}, {"name": "sco-kernel(1965)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/1965"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-1999-1253", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root privileges."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "VB-96.10", "refsource": "CERT", "url": "http://www.cert.org/vendor_bulletins/VB-96.10.sco"}, {"name": "96:001", "refsource": "SCO", "url": "ftp://ftp.sco.com/SSE/security_bulletins/SB.96:01a"}, {"name": "sco-kernel(1965)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/1965"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T17:02:53.874Z"}, "title": "CVE Program Container", "references": [{"name": "VB-96.10", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.cert.org/vendor_bulletins/VB-96.10.sco"}, {"name": "96:001", "tags": ["vendor-advisory", "x_refsource_SCO", "x_transferred"], "url": "ftp://ftp.sco.com/SSE/security_bulletins/SB.96:01a"}, {"name": "sco-kernel(1965)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/1965"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-1999-1253", "datePublished": "2001-09-12T04:00:00", "dateReserved": "2001-08-31T00:00:00", "dateUpdated": "2024-08-01T17:02:53.874Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:sco:internet_faststart:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "61FEF2E3-1939-42B3-B32F-A22C173A186A", "vulnerable": true}, {"criteria": "cpe:2.3:o:sco:openserver:*:*:*:*:*:*:*:*", "matchCriteriaId": "F95AC07F-8326-4E55-8E62-CE5934F7512C", "versionEndIncluding": "5.0.2", "vulnerable": true}, {"criteria": "cpe:2.3:o:sco:openserver:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "2C19F7B3-9043-4E53-90DE-92A4387858A7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root privileges."}], "id": "CVE-1999-1253", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "1996-06-07T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "ftp://ftp.sco.com/SSE/security_bulletins/SB.96:01a"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.cert.org/vendor_bulletins/VB-96.10.sco"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/1965"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "ftp://ftp.sco.com/SSE/security_bulletins/SB.96:01a"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.cert.org/vendor_bulletins/VB-96.10.sco"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/1965"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}