CVE-1999-0185

Solaris and SunOS - Remote Command Execution via FTP Data Port to rlogin Trust Bypass

Title source: llm
STIX 2.1

Description

In SunOS or Solaris, a remote user could connect from an FTP server's data port to an rlogin server on a host that trusts the FTP server, allowing remote command execution.

References (1)

Core 1
Core References
Vendor Advisory vendor-advisory x_refsource_sun
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/156

Scores

EPSS 0.0149
EPSS Percentile 81.3%

Details

Status published
Products (9)
sun/solaris 2.4
sun/solaris 2.5
sun/solaris 2.5.1
sun/sunos 4.1.3u1
sun/sunos 4.1.4
sun/sunos 5.3
sun/sunos 5.4
sun/sunos 5.5
sun/sunos 5.5.1
Published Oct 01, 1997
Tracked Since Feb 18, 2026