CVE-1999-1099

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Nov 22, 1996

Updated: Nov 20, 2024

Summary

CVE-1999-1099 is a vulnerability affecting the Kerberos 4 authentication protocol. An attacker can exploit this issue by sending a malformed UDP packet to a vulnerable system. The error message generated by the packet inadvertently reveals the realm name and the last user, allowing the attacker to obtain sensitive information remotely. This vulnerability poses a significant risk to systems that use Kerberos 4 for authentication and should be addressed promptly by applying the available patch.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlXEI
https://www.cve.org/CVERecord?id=CVE-1999-1099
https://nvd.nist.gov/vuln/detail/CVE-1999-1099

Back to Vulnerability Database

CVE-1999-1099

CVSS 2.0 Score 5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations