CVE-1999-1193

CVSS 2.0 Score 10 of 10 (high)

Details

Published May 14, 1991

Updated: Nov 20, 2024

Summary

CVE-1999-1193 is a vulnerability affecting NeXT NeXTstep 2.1 and earlier versions. This issue grants the "me" user wheel group privileges, enabling them to execute the su command and thereby gain root access to the system. This represents a significant security risk, as the "me" user typically has minimal privileges, and unauthorized root access can lead to serious consequences including data theft or system damage. Users running these affected NeXTstep versions should apply the necessary patches or updates to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlTDh
https://www.cve.org/CVERecord?id=CVE-1999-1193
https://nvd.nist.gov/vuln/detail/CVE-1999-1193

Back to Vulnerability Database

CVE-1999-1193

CVSS 2.0 Score 10 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations