CVE-1999-1388

CVSS 2.0 Score 6.2 of 10 (medium)

Details

Published May 13, 1994

Updated: Nov 20, 2024

Summary

CVE-1999-1388 is a vulnerability affecting SunOS 4.1.x systems. This issue permits local users to manipulate symbolic links (symlinks) and overwrite arbitrary files through the use of the -F command line argument in the passwd utility. By carefully crafting symlinks, an attacker can potentially gain unauthorized access to critical system files or disrupt important services. This vulnerability poses a significant risk to the security of affected systems and requires immediate patching.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SunOS

Affected Vendors

Oracle Corp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlTFj
https://www.cve.org/CVERecord?id=CVE-1999-1388
https://nvd.nist.gov/vuln/detail/CVE-1999-1388

Back to Vulnerability Database