CVE-1999-1285

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Dec 27, 1998

Updated: Nov 20, 2024

Summary

CVE-1999-1285 is a vulnerability affecting Linux versions 2.1.132 and earlier. It permits local users to initiate a denial-of-service attack through reading an unusually large buffer from a random device, such as /dev/urandom. The read operation cannot be interrupted, resulting in resource exhaustion and system instability. This issue poses a significant risk to system availability and should be addressed promptly through patching or upgrading affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlTwO
https://www.cve.org/CVERecord?id=CVE-1999-1285
https://nvd.nist.gov/vuln/detail/CVE-1999-1285

Back to Vulnerability Database