Improper Initialization of Grouplist in Transarc DCE DFS 1.1 for Solaris 2.4 and 2.5

Improper Initialization of Grouplist in Transarc DCE DFS 1.1 for Solaris 2.4 and 2.5

CVE-1999-1295 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Transarc DCE Distributed File System (DFS) 1.1 for Solaris 2.4 and 2.5 does not properly initialize the grouplist for users who belong to a large number of groups, which could allow those users to gain access to resources that are protected by DFS.

Learn more about our Cis Benchmark Audit For Oracle Solaris.