Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-1999-1137 | First vendor Publication | 1993-10-01 |
| Vendor | Cve | Last vendor Modification | 2018-10-30 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:L/AC:L/Au:N/C:P/I:N/A:N) | |||
|---|---|---|---|
| Cvss Base Score | 2.1 | Attack Range | Local |
| Cvss Impact Score | 2.9 | Attack Complexity | Low |
| Cvss Expoit Score | 3.9 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-1137 |
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 6436 | Solaris /dev/audio World Read Permission Solaris / SunOS device file /dev/audio contains a flaw that may lead to unauthorized information disclosure. Â The issue is triggered when a local user accesses the device, allowing the third party to listen conversations in the same room as the compromised workstation. The may result is a loss of confidentiality. |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2021-05-04 12:00:59 |
|
| 2021-04-22 01:01:13 |
|
| 2020-05-23 01:35:10 |
|
| 2020-05-23 00:14:13 |
|
| 2018-10-31 00:19:39 |
|
| 2017-10-10 09:23:14 |
|
| 2016-09-30 01:00:29 |
|
| 2016-08-31 12:00:33 |
|
| 2016-06-28 14:51:17 |
|
| 2016-04-27 09:20:06 |
|
| 2013-05-11 11:57:56 |
|
