CVE-1999-0129

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Dec 3, 1996
Updated: Aug 17, 2022

Summary

CVE-1999-0129 is a vulnerability affecting Sendmail, an email transfer agent. The issue permits local users to manipulate .forward and :include: files, leading to unintended file write access. Successful exploitation of this vulnerability allows attackers to modify the file and gain group permissions, potentially leading to elevated privileges within the Sendmail application. This security weakness can be exploited by attackers to gain unauthorized access to sensitive data or perform unintended actions within the email system. Users are advised to update their Sendmail installations and implement access controls to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • SunOS
  • HP-UX family of operating systems
  • IBM AIX
  • FreeBSD

Affected Vendors

  • IBM Corporation
  • Oracle Corp
  • FreeBSD Project
  • HP