CVE-1999-0656

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Jan 1, 1999

Updated: Nov 20, 2024

CWE ID 16

Summary

CVE-1999-0656 is a vulnerability affecting the ugidd RPC interface. This design flaw enables remote attackers to enumerate valid usernames by manipulating UIDs, which ugidd maps to local user and group names. By specifying arbitrary UIDs, an attacker can gain valuable information about the targeted system's user accounts, potentially leading to further exploitation attempts. This vulnerability poses a significant risk to system security and should be addressed promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlU3w
https://www.cve.org/CVERecord?id=CVE-1999-0656
https://nvd.nist.gov/vuln/detail/CVE-1999-0656

Back to Vulnerability Database

CVE-1999-0656

CVSS 2.0 Score 5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations