CVE-1999-1270

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Jul 11, 1998

Updated: Nov 20, 2024

Summary

CVE-1999-1270 is a vulnerability affecting KMail in KDE 1.0. This issue allows local users to obtain PGP passphrases passed as command-line arguments to other programs, posing a threat to the security of other users' PGP keys. By leveraging tools that display process arguments, such as "ps," malicious users could access these sensitive passphrases and compromise the affected system's PGP keys. This vulnerability highlights the importance of securely handling sensitive data and limiting access to such information to authorized parties.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

K Desktop Environment

Affected Vendors

KDE Community

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlTMb
https://www.cve.org/CVERecord?id=CVE-1999-1270
https://nvd.nist.gov/vuln/detail/CVE-1999-1270

Back to Vulnerability Database