CVE-1999-0297
CVSS 2.0 Score 7.2 of 10 (high)
Details
Published Dec 12, 1996
Updated: Aug 17, 2022
Summary
CVE-1999-0297 is a buffer overflow vulnerability affecting the Vixie Cron library up to version 3.0. This issue allows local users to exploit the vulnerability by setting a long environmental variable, resulting in an overflow of the buffer. The buffer overflow can lead to arbitrary code execution, effectively granting attackers root access to the system. This flaw poses a significant risk to systems running the vulnerable version of Vixie Cron and requires immediate attention and patching to mitigate it.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Red Hat Enterprise Linux
- NetBSD
- FreeBSD
Affected Vendors
- Red Hat
- Netbsd
- FreeBSD Project