CVE-1999-0787

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Sep 17, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0787 is a vulnerability affecting the SSH authentication agent. It allows an attacker to follow symlinks via a UNIX domain socket, potentially gaining access to the authentication agent's data or even impersonating a legitimate user. An attacker could manipulate the symlink to redirect the connection to an unintended socket, bypassing security measures and compromising the integrity of the authentication process. This issue was identified in 1999 and poses a significant risk to systems utilizing the SSH authentication agent with symlinks in their environment. System administrators are advised to take appropriate measures, such as disabling symlink following for UNIX domain sockets, to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

SSH

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners