CVE-1999-0073
CVSS 2.0 Score 10 of 10 (high)
Details
Summary
CVE-1999-0073 is a vulnerability affecting Telnet that allows remote clients to set environment variables, including LD_LIBRARY_PATH. By manipulating this variable, attackers can bypass the standard system libraries, potentially gaining root access to the system. This vulnerability poses a significant risk, as it enables unauthenticated attackers to elevate their privileges and take control of the affected system. This issue has been known since 1999 and remains a threat to organizations that have not yet addressed it. It is essential for organizations to update their Telnet implementations or disable the feature to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- SGI IRAX
Affected Vendors
- Saskatchewan Government Insurance