CVE-1999-0958

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Jan 12, 1998
Updated: Nov 20, 2024

Summary

CVE-1999-0958 is a vulnerability affecting sudo versions 1.5.x. It enables local users to execute arbitrary commands through a dot-dot (..) attack. By manipulating the current working directory during sudo command execution, malicious users can gain unauthorized access to sensitive files or execute potentially harmful commands. This issue poses a significant risk to systems with vulnerable sudo installations and highlights the importance of keeping software up-to-date to mitigate security threats.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Todd Miller Sudo

Affected Vendors

  • Todd Miller