CVE-1999-0906

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Sep 23, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-0906 is a significant buffer overflow vulnerability impacting the Secure Common Configuration Workshop (sccw) software. This issue enables local users to exploit the HOME environmental variable, ultimately gaining root access to affected systems. By manipulating the HOME variable, attackers can inject malicious code into the sccw buffer, leading to unintended command execution and potentially serious security compromises.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • SUSE Linux Enterprise Server

Affected Vendors

  • SUSE Linux GmbH