CVE-1999-0013

CVSS 3.1 Score 8.4 of 10 (high)

Details

Published Jan 22, 1998
Updated: Aug 1, 2024
CWE ID 522

Summary

CVE-1999-0013 is a vulnerability affecting the ssh-agent program used in Secure Shell (SSH) clients. This issue arises from the failure to properly restrict access to the ssh-agent's private keys. An attacker who gains local access to a system where an ssh-agent is running can potentially steal credentials, thereby allowing them to access remote accounts belonging to the ssh-agent user. This vulnerability poses a significant risk to organizations and individuals relying on SSH for remote access security. It is essential to implement proper access control mechanisms, such as restricting ssh-agent access to authorized users and enforcing strong password policies, to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share