CVE-1999-0690

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Jul 1, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0690 is a vulnerability affecting HP CDE (HP-UX Common Desktop Environment) software. The issue arises due to the inclusion of the current directory in root's PATH variable. This configuration flaw can potentially allow attackers to execute malicious commands with root privileges by placing a malicious file in the current directory and exploiting the vulnerability. Such an attack could lead to unauthorized system access, data theft, and other malicious activities. System administrators are advised to update their HP CDE installations with the latest patches to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlNet
https://www.cve.org/CVERecord?id=CVE-1999-0690
https://nvd.nist.gov/vuln/detail/CVE-1999-0690

Back to Vulnerability Database

CVE-1999-0690

CVSS 2.0 Score 7.2 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations