CVE-1999-1215

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Sep 16, 1993
Updated: Oct 10, 2017

Summary

CVE-1999-1215 is a vulnerability affecting the LOGIN.EXE program in Novell NetWare 4.0 and 4.01. When a user logs in, this program temporarily saves usernames and passwords to the disk. Malicious local users can exploit this vulnerability by accessing the saved credentials, allowing them to elevate their privileges and gain unauthorized access to system resources. This issue poses a significant security risk and requires immediate attention from system administrators. To mitigate this vulnerability, it is recommended to apply the available patch or update to the affected NetWare versions.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Novell NetWare

Affected Vendors

  • Novell Inc