CVE-1999-0963
CVSS 2.0 Score 7.2 of 10 (high)
Details
Published Dec 1, 1999
Updated: Sep 9, 2008
Summary
CVE-1999-0963 is a vulnerability affecting FreeBSD's mount_union command. This issue permits local users to create a symlink attack, bypassing file system access controls and ultimately gaining root privileges. The mount_union command, which is used to mount multiple file systems into a single union file system, becomes a security risk when it fails to adequately validate symlinks during the mounting process. This vulnerability could result in serious system compromises and requires appropriate patches or mitigations to protect against potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- FreeBSD
Affected Vendors
- FreeBSD Project