CVE-1999-1210

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-1999-1210
xterm in Digital UNIX 4.0B *with* patch kit 5 allows local users to overwrite arbitrary files via a symlink attack on a core dump file, which is created when xterm is called with a DISPLAY environmental variable set to a display that xterm cannot access.

7.2 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://marc.info/?l=bugtraq&m=87936891504885&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/613
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

cpe:2.3:o:digital:unix:4.0b:*:*:*:*:*:*:*
Information

Published : 1997-11-11 21:00

Updated : 2017-12-18 18:29

NVD link : CVE-1999-1210

Mitre link : CVE-1999-1210

JSON object : View

CWE
NVD-CWE-Other
Advertisement

dedicated server usa
Products Affected

digital

  • unix