CVE-1999-0073

CVSS 2.0 Score 10 of 10 (high)

Details

Published Oct 13, 1995
Updated: Nov 20, 2024

Summary

CVE-1999-0073 is a vulnerability affecting Telnet that allows remote clients to set environment variables, including LD_LIBRARY_PATH. By manipulating this variable, attackers can bypass the standard system libraries, potentially gaining root access to the system. This vulnerability poses a significant risk, as it enables unauthenticated attackers to elevate their privileges and take control of the affected system. This issue has been known since 1999 and remains a threat to organizations that have not yet addressed it. It is essential for organizations to update their Telnet implementations or disable the feature to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • SGI IRAX

Affected Vendors

  • Saskatchewan Government Insurance