CVE-1999-0691

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Sep 13, 1999
Updated: Oct 30, 2018

Summary

CVE-1999-0687 is a vulnerability affecting the ToolTalk ttsession daemon, which uses weak Remote Procedure Call (RPC) authentication. This weakness exposes the system to remote attacks, allowing an adversary to execute arbitrary commands without proper authorization. An attacker can exploit this vulnerability to gain unauthorized access and potentially install malware or steal sensitive data. The weakness lies in the inadequate authentication mechanism, which fails to provide sufficient security checks, making it crucial for affected systems to be patched as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • IBM AIX
  • Sun Solaris
  • SunOS

Affected Vendors

  • IBM Corporation
  • Oracle Corp
  • Sun.