CVE-1999-0325

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Dec 1, 1995

Updated: Nov 20, 2024

Summary

CVE-1999-0325 is a vulnerability affecting the vhe_u_mnt program in HP-UX systems. This issue grants local users the ability to create root files by utilizing symlinks. By crafting a carefully designed symbolic link, an attacker can manipulate the file system and gain elevated privileges, potentially resulting in unauthorized data modification or system compromise. HP-UX users are advised to apply the relevant patch to mitigate this security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HP-UX

Affected Vendors

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlQLB
https://www.cve.org/CVERecord?id=CVE-1999-0325
https://nvd.nist.gov/vuln/detail/CVE-1999-0325

Back to Vulnerability Database