CVE-2001-1555

Solaris 8 - Unauthenticated Terminal Privilege Escalation via TTY ACL Modification

Title source: llm
STIX 2.1

Description

pt_chmod in Solaris 8 does not call fdetach to reset terminal privileges when users log out of terminals, which allows local users to write to other users' terminals by modifying the ACL of a TTY.

References (4)

Core 4
Core References
Patch, Vendor Advisory vendor-advisory x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-43929-1
Exploit, Vendor Advisory vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1002732
Patch, Vendor Advisory vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1004035
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/3522

Scores

EPSS 0.0007
EPSS Percentile 20.9%

Details

Status published
Products (2)
sun/solaris 8.0
sun/sunos 5.8
Published Dec 31, 2001
Tracked Since Feb 18, 2026