CVE-1999-1096

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published May 16, 1998
Updated: Nov 20, 2024

Summary

CVE-1999-1096 is a significant vulnerability affecting the kscreensaver component of the KDE klock application. This issue allows local users to exploit a buffer overflow vulnerability in the software by manipulating their HOME environmental variable with excessive length. The exploit results in unintended code execution, granting attackers root privileges on the affected system. This vulnerability poses a serious threat to security as it enables unauthorized access to critical system functions. Users are strongly advised to apply the relevant patches to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • K Desktop Environment

Affected Vendors

  • KDE Community