CVE-1999-0426

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Mar 1, 1999
Updated: Nov 20, 2024
CWE ID 276

Summary

CVE-1999-0426 is a vulnerability affecting Linux versions prior to 2.0.36. It arises from the default permissions of the /dev/kmem file, which grant unauthorized access to the kernel memory. An attacker can exploit this weakness to conduct IP spoofing, potentially leading to serious security breaches. By manipulating the memory contents, an intruder can falsify the source IP address of network packets, enabling them to impersonate other systems on the network. This vulnerability underscores the importance of securing system files and implementing strict access controls.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • SUSE Linux Enterprise Server

Affected Vendors

  • SUSE Linux GmbH