CVE-1999-1555

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Jun 11, 1998

Updated: Nov 20, 2024

Summary

CVE-1999-1555 is a vulnerability affecting the Cheyenne InocuLAN Anti-Virus Server in Inoculan 4.0 before Service Pack 2. This issue arises due to the creation of an update directory with "EVERYONE FULL CONTROL" permissions. Local users can exploit this vulnerability by installing a Trojan horse DLL through Inoculan's antivirus update feature. This weakness could potentially lead to unauthorized software installation and compromise the security of the system. It is strongly recommended that affected users install the Service Pack 2 to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlXbe
https://www.cve.org/CVERecord?id=CVE-1999-1555
https://nvd.nist.gov/vuln/detail/CVE-1999-1555

Back to Vulnerability Database

CVE-1999-1555

CVSS 2.0 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations