CVE-1999-0298

Summary

CVE-1999-0298 is a vulnerability affecting the ypbind utility in Linux Slackware and SunOS. When the -ypset and -ypsetme options are activated, it allows both local and remote attackers to execute a ".." (dot dot) attack, leading to file overwriting. This issue poses a significant risk as it enables unauthorized access and modification of critical system files. Attackers can exploit this vulnerability to gain elevated privileges and potentially take control of the affected system. System administrators are advised to disable the vulnerable options or apply relevant patches to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.