CVE-1999-0942

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Oct 4, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0942 is a vulnerability affecting UnixWare's dos7utils package. A local user can exploit this issue by manipulating the STATICMERGE environmental variable to execute a malicious script, resulting in elevated privileges and potential system compromise. The vulnerability allows for a local user to gain root access, posing a significant security risk. This issue was identified in 1999 and remains relevant for UnixWare systems that have not been patched. Organizations using UnixWare are advised to update their systems to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

California State Controller’s Office

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlUAw
https://www.cve.org/CVERecord?id=CVE-1999-0942
https://nvd.nist.gov/vuln/detail/CVE-1999-0942

Back to Vulnerability Database

CVE-1999-0942

CVSS 2.0 Score 7.2 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations