CVE-1999-1330

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Dec 31, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1330 is a vulnerability affecting the db library version 1.85.4. The snprintf function in this library fails to respect the size parameter, leading to potential buffer overflows. Attackers can exploit this flaw to inject malicious data beyond the intended limit, causing unintended program behavior or system crashes. A properly implemented snprintf function would prevent such overflows by strictly adhering to the specified size. This vulnerability could potentially be used for code injection or other malicious activities.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Debian
Red Hat Enterprise Linux

Affected Vendors

Debian
Red Hat

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlVc1
https://www.cve.org/CVERecord?id=CVE-1999-1330
https://nvd.nist.gov/vuln/detail/CVE-1999-1330

Back to Vulnerability Database