CVE-1999-0857
CVSS 2.0 Score 2.1 of 10 (low)
Details
Published Dec 1, 1999
Updated: Nov 20, 2024
Summary
CVE-1999-0857 is a vulnerability affecting the FreeBSD gdc (graphical password changing) program. This issue permits local users to manipulate files through a symlink (symbolic link) attack. By creating a symlink to a sensitive file and then modifying the link, an attacker can effectively alter the original file's content, leading to potential data corruption or unauthorized access. This vulnerability highlights the importance of properly managing symlinks in critical system applications.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- FreeBSD
Affected Vendors
- FreeBSD Project