fkie_nvd - fkie_cve-1999-0687

fkie_cve-1999-0687

Vulnerability from fkie_nvd

Published

1999-09-13 04:00

Modified

2025-04-03 01:03

Severity ?

Summary

The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

References

▶	URL	Tags
	cve@mitre.org	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192
	cve@mitre.org	http://www.ciac.org/ciac/bulletins/k-001.shtml
	cve@mitre.org	http://www.securityfocus.com/bid/637
	cve@mitre.org	http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103
	af854a3a-2127-422b-91ae-364da2661108	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/192
	af854a3a-2127-422b-91ae-364da2661108	http://www.ciac.org/ciac/bulletins/k-001.shtml
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/637
	af854a3a-2127-422b-91ae-364da2661108	http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103

Impacted products

Vendor	Product	Version
cde	cde	1.0.1
cde	cde	1.0.2
cde	cde	1.1
cde	cde	1.2
cde	cde	2.0
cde	cde	2.1
cde	cde	2.120
digital	unix	4.0d
digital	unix	4.0f
ibm	aix	4.1
ibm	aix	4.1.1
ibm	aix	4.1.2
ibm	aix	4.1.3
ibm	aix	4.1.4
ibm	aix	4.1.5
ibm	aix	4.2
ibm	aix	4.2.1
ibm	aix	4.3
ibm	aix	4.3.1
ibm	aix	4.3.2
sun	solaris	2.4
sun	solaris	2.5
sun	solaris	2.5.1
sun	solaris	2.6
sun	solaris	7.0
sun	sunos	-
sun	sunos	4.1.3u1
sun	sunos	4.1.4
sun	sunos	5.3
sun	sunos	5.4
sun	sunos	5.5
sun	sunos	5.5.1
sun	sunos	5.7

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cde:cde:1.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6527C0F-8052-438F-888D-44D67A9E0E6F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cde:cde:1.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "500C3B15-B0E5-4DEE-80EC-A1A0418365A8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cde:cde:1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B9A4891-EB12-490E-9BA0-4A14A551708E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cde:cde:1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "0409D8C4-A512-492A-9093-CE1E78E1426E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cde:cde:2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "E01901D5-F582-443B-82A3-366EB5E29C61",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cde:cde:2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4846EA2-0B0E-4EA1-A1B0-C998DD8F7635",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cde:cde:2.120:*:*:*:*:*:*:*",
              "matchCriteriaId": "D1B9337E-3AF1-4E76-BAC8-2B05A484C77D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:digital:unix:4.0d:*:*:*:*:*:*:*",
              "matchCriteriaId": "8C250283-4343-4569-A6EA-988FB7319AA7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:digital:unix:4.0f:*:*:*:*:*:*:*",
              "matchCriteriaId": "8237F390-43DB-4B07-9CD7-C3F804710497",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "FBF25306-E7C2-4F9A-A809-4779A6C0A079",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B3BA7775-30F2-4CA0-BA6E-70ED12A48D90",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB038A89-1CA6-4313-B7CE-56C894945FFD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B3BC86F-5718-4232-BFFF-6244A7C09B8F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "E6118CC1-6E51-4E1B-8F58-43B337515222",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "F3D3B348-270F-4209-B31A-2B40F5E4A601",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "05F20EC2-ADE6-4F96-A2E7-1DCCA819D657",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "91D7C561-4D23-430B-A7D8-137E52B08FF5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "11ACD012-F05F-45CD-A170-96CBAA42FFE4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "55919E74-09E7-44BA-9941-D1B69BB1692F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:ibm:aix:4.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "45F3C5D8-8BC3-44EB-917A-D0BA051D3D9D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:solaris:2.4:*:x86:*:*:*:*:*",
              "matchCriteriaId": "1F881110-7B54-49DA-B23A-710273430C44",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:solaris:2.5:*:x86:*:*:*:*:*",
              "matchCriteriaId": "200D8CB2-0D52-40A8-9CD9-6E4513605201",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:solaris:2.5.1:*:x86:*:*:*:*:*",
              "matchCriteriaId": "F66BAF35-A8B9-4E95-B270-444206FDD35B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:solaris:2.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "34EBF074-78C8-41AF-88F1-DA6726E56F8B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:solaris:7.0:*:x86:*:*:*:*:*",
              "matchCriteriaId": "8F1F312C-413F-4DB4-ABF4-48E33F6FECF2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "369207B4-96FA-4324-9445-98FAE8ECF5DB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:sunos:4.1.3u1:*:*:*:*:*:*:*",
              "matchCriteriaId": "FD1BA107-F2D3-4F13-82EC-4576C429E3C1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:sunos:4.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "1070749A-65E9-439A-A7CC-3CE529A5D5E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:sunos:5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C7A22D21-E0A9-4B56-86C7-805AD1A610D6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:sunos:5.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "7AAC8954-74A8-4FE3-ABE7-57DA041D9D8F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:sunos:5.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B72953B-E873-4E44-A3CF-12D770A0D416",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:sunos:5.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "39F847DB-65A9-47DA-BCFA-A179E5E2301A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "08003947-A4F1-44AC-84C6-9F8D097EB759",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands."
    }
  ],
  "id": "CVE-1999-0687",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "1999-09-13T04:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll\u0026doc=secbull/192"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.ciac.org/ciac/bulletins/k-001.shtml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/637"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll\u0026doc=secbull/192"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ciac.org/ciac/bulletins/k-001.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/637"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9909-103"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-1999-0687 (GCVE-0-1999-0687)

Vulnerability from cvelistv5

Published

2000-01-04 05:00