CVE-1999-1486

CVSS 2.0 Score 1.2 of 10 (low)

Details

Published Feb 25, 1998

Updated: Nov 20, 2024

Summary

CVE-1999-1486 is a vulnerability affecting IBM AIX 4.1 to 4.3 operating systems. The issue lies with the sadc (System Administration Daemon) component, which can be exploited when called from setgid adm programs like timex. The vulnerability permits local users to overwrite arbitrary files through a symlink (symbolic link) attack. This means that an attacker with local access can create a malicious link to a critical file and replace the original with it, potentially leading to significant data loss or system compromise.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM AIX

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/LLrmE1
https://www.cve.org/CVERecord?id=CVE-1999-1486
https://nvd.nist.gov/vuln/detail/CVE-1999-1486

Back to Vulnerability Database