CVE-1999-1079

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published May 6, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1079 is a privilege escalation vulnerability affecting the ptrace function in AIX 4.3. Local users can exploit this flaw by attaching to a setgid program, allowing them to elevate their privileges. Successful exploitation grants attackers expanded access to system resources and potential control over critical system functions. The ptrace function, designed for debugging, inadvertently provides this exploit opportunity due to insufficient access checks. Affected systems should be updated as soon as possible to mitigate the risk of this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM AIX

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlVJe
https://www.cve.org/CVERecord?id=CVE-1999-1079
https://nvd.nist.gov/vuln/detail/CVE-1999-1079

Back to Vulnerability Database