CVE-1999-1221

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Nov 17, 1996

Updated: Nov 20, 2024

Summary

CVE-1999-1221 is a vulnerability affecting Digital Unix (OSF/1) 3.x. It permits local users to manipulate arbitrary files through a symbolic link attack on the dxchpwd.log file associated with the dxchpwd utility. Successful exploitation allows attackers to modify critical system configurations or sensitive data, potentially leading to significant security risks. This vulnerability emphasizes the importance of implementing proper file access controls and restricting user privileges.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Digital Unix

Affected Vendors

Compaq

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlXUh
https://www.cve.org/CVERecord?id=CVE-1999-1221
https://nvd.nist.gov/vuln/detail/CVE-1999-1221

Back to Vulnerability Database