CVE-1999-0547

CVSS 2.0 Score 10 of 10 (high)

Details

Published Jan 1, 1999
Updated: Aug 17, 2022

Summary

CVE-1999-0547 is a vulnerability affecting SSH servers where authentication is permitted through the use of the .rhosts file. This file, which can be located in a user's home directory, contains a list of trusted hosts and their corresponding usernames. An attacker who gains unauthorized access to the system can exploit this weakness by manipulating the .rhosts file to authenticate as a trusted user, bypassing the need for a password. This can lead to unauthorized access and potential data breaches. It is recommended that SSH servers be configured to disallow authentication via the .rhosts file to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share