CVE-1999-0480

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Apr 1, 1999
Updated: Aug 17, 2022

Summary

CVE-1999-0480 is a vulnerability affecting Midnight Commander 4.x versions. Attackers can exploit this issue by creating a symlink, leading to a denial of service. The symlink attack causes Midnight Commander to crash and become unresponsive, rendering the system impossible to use until the application is restarted. Local attackers can easily execute this attack due to insufficient input validation, making it a significant security concern. This vulnerability highlights the importance of applying software patches to mitigate known security risks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Midnight Commander

Affected Vendors

  • Midnight-commander