CVE-1999-1217

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Jul 25, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-1217 is a vulnerability affecting Windows NT systems. This issue arises due to the PATH environment variable including the current working directory. An attacker can exploit this by placing malicious programs with the same name as common system programs into specific directories. Successful exploitation allows local users to gain elevated privileges. This vulnerability highlights the importance of careful file management and restricting user permissions to minimize risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Windows NT

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlSUu
https://www.cve.org/CVERecord?id=CVE-1999-1217
https://nvd.nist.gov/vuln/detail/CVE-1999-1217

Back to Vulnerability Database