CVE-1999-0859
Solaris - Unauthenticated Arbitrary File Read via arp -f Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-1999-0859. PoCs published by anonymous.
AI-analyzed exploit summary This exploit leverages a vulnerability in SunOS 4.1.X's arp(8c) utility, which allows reading system memory due to improper permissions on /dev/kmem. By using the -f flag with /dev/kmem, an attacker can dump paged system memory, potentially leading to a root compromise.
Description
Solaris arp allows local users to read files via the -f parameter, which lists lines in the file that do not parse properly.
Exploits (1)
This exploit leverages a vulnerability in SunOS 4.1.X's arp(8c) utility, which allows reading system memory due to improper permissions on /dev/kmem. By using the -f flag with /dev/kmem, an attacker can dump paged system memory, potentially leading to a root compromise.