CVE-1999-1496

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Jun 8, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1496 refers to a vulnerability in Sudo 1.5 found in Debian Linux 2.1 and Red Hat 6.0. This issue allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program. If the file does not exist, a distinct error message is generated, revealing the information sought. This vulnerability can potentially lead to further exploitation and unauthorized access to sensitive data. Users of the affected versions are advised to update Sudo to a more secure version as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Red Hat Enterprise Linux
Debian

Affected Vendors

Debian
Red Hat

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlZA2
https://www.cve.org/CVERecord?id=CVE-1999-1496
https://nvd.nist.gov/vuln/detail/CVE-1999-1496

Back to Vulnerability Database