CVE-1999-1298

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Apr 7, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-1298 is a vulnerability affecting FreeBSD 2.2.1 and earlier versions. During the configuration of anonymous FTP, a weakness is exploited that results in the creation of a new ftp user, whose password is not set and whose shell is set to /bin/date. This issue grants unauthorized access to attackers, potentially allowing them to access certain system resources.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

FreeBSD

Affected Vendors

FreeBSD Project

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NEUHkB
https://www.cve.org/CVERecord?id=CVE-1999-1298
https://nvd.nist.gov/vuln/detail/CVE-1999-1298

Back to Vulnerability Database