CVE-1999-0350

CVSS 2.0 Score 6.2 of 10 (medium)

Details

Published Feb 8, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0350 is a vulnerability affecting the db_loader program in IBM's ClearCase configuration management system. This issue involves a race condition that allows local users to gain root access by manipulating the SUID (Set User ID) bits. By exploiting this vulnerability, an attacker can execute commands with elevated privileges, potentially leading to serious security consequences. This race condition was discovered in 1999 and has since been mitigated through software updates. It is essential for ClearCase users to apply these patches to protect their systems from this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Rational Software

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlRh1
https://www.cve.org/CVERecord?id=CVE-1999-0350
https://nvd.nist.gov/vuln/detail/CVE-1999-0350

Back to Vulnerability Database

CVE-1999-0350

CVSS 2.0 Score 6.2 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations