CVE-1999-1013

Summary

CVE-1999-1013 is a vulnerability affecting named-xfer in AIX 4.1.5 and 4.2.1. A malformed zone file can be used by system group members to overwrite critical system files, granting them root access. This issue poses a significant risk to the security and integrity of affected systems, as unauthorized users can exploit it to gain elevated privileges. To mitigate this vulnerability, it is recommended to update the named-xfer software to a version that addresses the issue or implement access control measures to restrict system group members from using the -f parameter with zone files.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.