CVE-1999-0388
CVSS 2.0 Score 4.6 of 10 (medium)
Details
Summary
CVE-1999-0388 is a vulnerability affecting DataLynx suGuard, where the reliance on the PATH environment variable to execute the ps command opens a door for local users to execute commands with root privileges. This issue can potentially lead to serious security consequences if exploited, as unauthorized commands can result in data theft, system damage, or unauthorized access. The vulnerability can be exacerbated if default configurations do not limit the number of trusted directories within the PATH variable. To mitigate the risk, it is recommended that system administrators update their DataLynx suGuard installations to the latest version, or consider alternative methods to execute commands without relying on the PATH environment variable.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.