CVE-1999-1037

Summary

CVE-1999-1037 is a vulnerability affecting SATAN 1.1.1, a security scanner tool. The issue grants local users the ability to overwrite arbitrary files through a symbolic link (symlink) attack on the /tmp/rex.$$ file. By creating a maliciously crafted symlink, an attacker can manipulate the file that SATAN is currently processing, leading to potential data corruption or unauthorized access. This vulnerability highlights the importance of properly handling user-supplied input, especially when creating temporary files.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.