CVE-1999-0078

CVSS 2.0 Score 1.9 of 10 (low)

Details

Published Apr 18, 1996
Updated: Nov 20, 2024

Summary

CVE-1999-0078 is a vulnerability affecting the pcnfsd daemon, also known as rpc.pcnfsd. This flaw allows local users to manipulate file permissions or even execute arbitrary commands by passing malicious arguments in RPC calls. The vulnerability existed due to inadequate input validation, posing a significant security risk. Successful exploitation could lead to unauthorized access, data modification, or even system compromise. This issue underscores the importance of implementing strong input validation mechanisms to protect against malicious inputs.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • HP-UX
  • HP-UX family of operating systems
  • IBM AIX
  • SunOS
  • SGI IRAX

Affected Vendors

  • HP
  • IBM Corporation
  • Oracle Corp
  • Saskatchewan Government Insurance
  • NEC Corporation