CVE-1999-0083

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Jun 11, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-0083 is a vulnerability affecting FTP (File Transfer Protocol) servers that utilize the getcwd() function. The issue results in a file descriptor leak, allowing an attacker to obtain sensitive information, potentially leading to unauthorized access or privilege escalation. By manipulating FTP commands, an adversary can force the server to disclose the current working directory, thereby gaining insights into the system's structure and file locations. This vulnerability can pose a significant risk if left unaddressed, as it can aid an attacker in further exploitation of the targeted system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

SGI IRAX

Affected Vendors

Saskatchewan Government Insurance

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Predator Still Active, with New Client and Corporate Links Identified

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

Know What Matters

For Customers

For Partners