CVE-1999-0958
CVSS 2.0 Score 7.2 of 10 (high)
Details
Published Jan 12, 1998
Updated: Nov 20, 2024
Summary
CVE-1999-0958 is a vulnerability affecting sudo versions 1.5.x. It enables local users to execute arbitrary commands through a dot-dot (..) attack. By manipulating the current working directory during sudo command execution, malicious users can gain unauthorized access to sensitive files or execute potentially harmful commands. This issue poses a significant risk to systems with vulnerable sudo installations and highlights the importance of keeping software up-to-date to mitigate security threats.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Todd Miller Sudo
Affected Vendors
- Todd Miller