CVE-1999-0491

Summary

CVE-1999-0491 is a vulnerability affecting the Bash shell, allowing a local user to execute commands as another user by creating a specially named directory. The Bash prompt parsing functionality is the root cause, enabling attackers to manipulate commands through directory names. By creating a directory with the name of the command to be executed, a local user can potentially elevate their privileges and gain unauthorized access to the system. This vulnerability poses a significant risk and requires affected systems to be patched promptly to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.