CVE-1999-0297

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Dec 12, 1996
Updated: Aug 17, 2022

Summary

CVE-1999-0297 is a buffer overflow vulnerability affecting the Vixie Cron library up to version 3.0. This issue allows local users to exploit the vulnerability by setting a long environmental variable, resulting in an overflow of the buffer. The buffer overflow can lead to arbitrary code execution, effectively granting attackers root access to the system. This flaw poses a significant risk to systems running the vulnerable version of Vixie Cron and requires immediate attention and patching to mitigate it.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Red Hat Enterprise Linux
  • NetBSD
  • FreeBSD

Affected Vendors

  • Red Hat
  • Netbsd
  • FreeBSD Project