Security readout for executives and security teams
Plain-English summary
This CVE describes an old Solaris buffer overflow involving libc, ufsrestore, and rcp when handling the LC_MESSAGES environment variable. The provided sources do not identify affected versions, business impact, or a confirmed fix, so urgency depends on whether legacy Solaris systems remain in use.
Executive priority
Treat this as a legacy-platform risk discovery item, not an emergency based on the provided evidence. Escalate if Solaris remains operational, especially on systems with sensitive data or privileged utilities exposed to users.
Technical view
The record states that Solaris libc, ufsrestore, and rcp contain a buffer overflow reachable through the LC_MESSAGES environment variable. The bundle provides no CVSS, CWE, affected version range, privilege context, impact detail, or remediation advisory.
Likely exposure
Exposure is most likely limited to organizations still running legacy Solaris systems or maintaining old Solaris images. The provided affected-product data is listed as n/a, so specific version exposure cannot be determined from this bundle.
Exploitation context
The CVE is not marked in KEV, and the provided bundle gives no evidence of active exploitation. A public Bugtraq reference exists, indicating historical public disclosure, but exploit status is not established here.
Researcher notes
The source bundle is sparse: description-only CVE metadata, no CVSS, no CWE, no concrete affected versions, and no fix. Analysis should avoid assumptions beyond Solaris, libc, ufsrestore, rcp, and LC_MESSAGES.
Mitigation direction
- Inventory any Solaris hosts, including archived or isolated legacy systems.
- Check vendor or historical Solaris security guidance for applicable patches or workarounds.
- Prioritize retirement or isolation of unsupported Solaris systems.
- Restrict interactive access to legacy Solaris hosts where feasible.
- Review environment-variable handling controls for privileged Solaris utilities.
Validation and detection
- Confirm whether Solaris is present in production, lab, backup, or recovery environments.
- Identify installed Solaris versions and affected utilities on any remaining hosts.
- Check patch history against vendor or historical advisory information.
- Review logs for unusual use of rcp or restore-related utilities.
- Document uncertainty where version or patch evidence is unavailable.
Public sources used
Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.
Conservative CVE-to-ATT&CK context
These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.
ATT&CK lookup starting points
Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.
CVE-1999-0767 mapping review
Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.
Open ATT&CK lookup- Severity
- Unknown
- CVSS
- Not scored
- Known Exploited
- No
- Published
CNA and ADP enrichment extracted from CVE v5
These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.
CVSS and timeline data
No CVSS vectors or timeline events were available in the normalized CVE source material.
Source materials
- CVE List V5 sourceCVE List V5
- https://marc.info/?l=bugtraq&m=87602167420557&w=2CVE reference · x_refsource_MISC
Products and packages named in the record
CWE details
CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.
