CVE-1999-0690

Summary

CVE-1999-0690 is a vulnerability affecting HP CDE (HP-UX Common Desktop Environment). The issue lies in the program's configuration, where root's PATH variable includes the current directory. This misconfiguration can lead to potential security risks, as it allows attackers to execute malicious scripts or commands located in the current directory by exploiting the trust that the root user has in its PATH. To mitigate this vulnerability, it is recommended to update the HP CDE to a version that does not include the current directory in root's PATH variable or modify the configuration file manually to remove the current directory.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.