CVE-1999-1123
SunOS - Privilege Escalation via sunsrc makeinstall or winstall
Title source: llmExploitation Summary
EIP tracks 2 public exploits for CVE-1999-1123. PoCs published by anonymous.
AI-analyzed exploit summary This exploit leverages a PATH environment variable manipulation to execute a malicious 'make' script via the setuid root binary 'makeinstall', resulting in privilege escalation to root.
Description
The installation of Sun Source (sunsrc) tapes allows local users to gain root privileges via setuid root programs (1) makeinstall or (2) winstall.
Exploits (2)
This exploit leverages a PATH environment variable manipulation to execute a malicious 'make' script via the setuid root binary 'makeinstall', resulting in privilege escalation to root.
This exploit leverages a PATH environment variable manipulation vulnerability in Sun's setuid root binaries (makeinstall and winstall) to execute arbitrary commands as root. By placing a malicious 'install' script in a user-controlled directory and manipulating PATH, an attacker can escalate privileges to root.