CVE-1999-1346

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Oct 7, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1346: A vulnerability was identified in the PAM (Pluggable Authentication Modules) configuration file for rlogin in Red Hat Linux 6.1 and earlier versions. Contrary to the expected security configuration, a less permissive rule was found to precede a more restrictive one. As a result, users could access the host via rlogin, despite rlogin being explicitly disabled using the /etc/nologin file. This misconfiguration poses a significant risk to system security, allowing unauthorized access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Red Hat Enterprise Linux

Affected Vendors

Red Hat

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlWKJ
https://www.cve.org/CVERecord?id=CVE-1999-1346
https://nvd.nist.gov/vuln/detail/CVE-1999-1346

Back to Vulnerability Database