CVE-1999-0078
CVSS 2.0 Score 1.9 of 10 (low)
Details
Published Apr 18, 1996
Updated: Nov 20, 2024
Summary
CVE-1999-0078 is a vulnerability affecting the pcnfsd daemon, also known as rpc.pcnfsd. This flaw allows local users to manipulate file permissions or even execute arbitrary commands by passing malicious arguments in RPC calls. The vulnerability existed due to inadequate input validation, posing a significant security risk. Successful exploitation could lead to unauthorized access, data modification, or even system compromise. This issue underscores the importance of implementing strong input validation mechanisms to protect against malicious inputs.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- HP-UX
- HP-UX family of operating systems
- IBM AIX
- SunOS
- SGI IRAX
Affected Vendors
- HP
- IBM Corporation
- Oracle Corp
- Saskatchewan Government Insurance
- NEC Corporation