CVE-1999-0978

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 9, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0978 is a vulnerability affecting the htdig software. This issue enables remote attackers to execute arbitrary commands by manipulating filenames containing shell metacharacters. An attacker could exploit this vulnerability by crafting a maliciously named file that, when processed by htdig, would trigger the execution of the attacker's command. Successful exploitation could lead to unauthorized system access or data theft. Organizations running htdig are advised to apply the available patch or upgrade to a secure version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Debian

Affected Vendors

Debian

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlP9O
https://www.cve.org/CVERecord?id=CVE-1999-0978
https://nvd.nist.gov/vuln/detail/CVE-1999-0978

Back to Vulnerability Database