CVE-1999-1111

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Nov 9, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1111 is a vulnerability affecting StackGuard before version 1.21. Instead of exploiting a buffer overflow to alter a return address, this issue allows remote attackers to bypass the Random and Terminator Canary security mechanisms using a non-linear attack, directly modifying a pointer to reach a desired return address. This bypass technique undermines the protection provided by these security features, potentially enabling arbitrary code execution.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlSSq
https://www.cve.org/CVERecord?id=CVE-1999-1111
https://nvd.nist.gov/vuln/detail/CVE-1999-1111

Back to Vulnerability Database

CVE-1999-1111

CVSS 2.0 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations