CVE-1999-0138

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Jun 26, 1996

Updated: Nov 20, 2024

Summary

CVE-1999-0138 is a vulnerability affecting the suidperl and sperl programs. This issue permits a user to maintain root privileges when changing UIDs back to their original user, potentially granting unauthorized access to the system. This flaw can be exploited by a malicious actor to gain root access and carry out unintended actions, making it a significant security concern. The vulnerability arises from the failure of these programs to properly relinquish root privileges upon UID switching.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

FreeBSD
IBM AIX
Linux Kernel
HP-UX

Affected Vendors

IBM Corporation
LINUX
HP
FreeBSD Project
Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NEUHd0
https://www.cve.org/CVERecord?id=CVE-1999-0138
https://nvd.nist.gov/vuln/detail/CVE-1999-0138

Back to Vulnerability Database