CVE-1999-1137

CVSS 2.1 - LOW

Description

The permissions for the /dev/audio device on Solaris 2.2 and earlier, and SunOS 4.1.x, allow any local user to read from the device, which could be used by an attacker to monitor conversations happening near a machine that has a microphone.

Affected Products

Vendor	Product	Version
sun	solaris	`All versions`
sun	sunos	`All versions`
sun	sunos	`All versions`
sun	sunos	`4.1`
sun	sunos	`5.0`

References

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctyp...

http://www.ciac.org/ciac/bulletins/e-01.shtml

http://www.osvdb.org/6436

https://exchange.xforce.ibmcloud.com/vulnerabiliti...

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctyp...

http://www.ciac.org/ciac/bulletins/e-01.shtml

http://www.osvdb.org/6436

https://exchange.xforce.ibmcloud.com/vulnerabiliti...

Weakness Types

NVD-CWE-Other

CVE Information

CVE ID:: CVE-1999-1137
Published:: 1993-10-01
Modified:: 2026-04-16
CVSS Score:: 2.1
Severity:: LOW
Vector:: AV:L/AC:L/Au:N/C:P/I:N/A:N

Affected Vendors

sun

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL