CVE-1999-0433

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Mar 21, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0433 refers to a vulnerability in the XFree86 startx command. This issue allows local users to conduct symlink attacks, leading them to create files in restricted directories. This potentially grants them elevated privileges or causes a denial of service. The vulnerability arises due to the lack of proper input validation by the XFree86 startx command when handling symlinks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SUSE Linux Enterprise Server
NetBSD
Red Hat Enterprise Linux

Affected Vendors

Red Hat
SUSE Linux GmbH
Netbsd

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlNdS
https://www.cve.org/CVERecord?id=CVE-1999-0433
https://nvd.nist.gov/vuln/detail/CVE-1999-0433

Back to Vulnerability Database