CVE-1999-0480
CVSS 2.0 Score 2.1 of 10 (low)
Details
Published Apr 1, 1999
Updated: Aug 17, 2022
Summary
CVE-1999-0480 is a vulnerability affecting Midnight Commander 4.x versions. Attackers can exploit this issue by creating a symlink, leading to a denial of service. The symlink attack causes Midnight Commander to crash and become unresponsive, rendering the system impossible to use until the application is restarted. Local attackers can easily execute this attack due to insufficient input validation, making it a significant security concern. This vulnerability highlights the importance of applying software patches to mitigate known security risks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Midnight Commander
Affected Vendors
- Midnight-commander