Description
Solaris chkperm allows local users to read files owned by bin via the VMSYS environmental variable and a symlink attack.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Kevin L Prigge · textlocalsolaris
https://www.exploit-db.com/exploits/19235
References (1)
Core 1
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/837
Scores
EPSS
0.0034
EPSS Percentile
56.8%
Details
Status
published
Products (6)
sun/solaris
2.5.1 (2 CPE variants)
sun/solaris
2.6
sun/solaris
7.0
sun/sunos
sun/sunos
5.5.1
sun/sunos
5.7
Published
Dec 01, 1999
Tracked Since
Feb 18, 2026