CVE-1999-0324

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Sep 1, 1996
Updated: Sep 9, 2008

Summary

CVE-1999-0324 is a vulnerability affecting the ppl program in HP-UX systems. This issue permits local users to create root files by manipulating symbolic links. By crafting a specially designed symbolic link, an attacker can gain elevated privileges and write arbitrary files with root permissions, potentially compromising the security of the affected system. Local users who have access to the vulnerable ppl program are at risk. HP-UX users are advised to apply the available patch or update as soon as possible to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • HP-UX family of operating systems
  • HP-UX

Affected Vendors

  • HP