CVE-1999-0555

CVSS 2.0 Score 10 of 10 (high)

Details

Published Jan 1, 1999
Updated: Aug 17, 2022

Summary

CVE-1999-0555 refers to a security vulnerability in Unix systems where an account with a name other than "root" can still have a UID (User ID) of 0, granting it full root privileges. This misconfiguration can lead to unauthorized access and potential system compromise. It is important to note that this issue is not a software bug, but rather a mistaken assignment of user IDs, highlighting the significance of proper system administration and user account management. This vulnerability can be mitigated by ensuring that only the "root" account holds a UID of 0, and that all other user accounts have appropriate and minimal privileges.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share