CVE-1999-1215

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Sep 16, 1993

Updated: Nov 20, 2024

Summary

CVE-1999-1215 is a vulnerability affecting the LOGIN.EXE program in Novell NetWare 4.0 and 4.01. During the login process, this program temporarily saves usernames and passwords on the disk. Malicious local users can exploit this vulnerability by accessing the saved credentials, allowing them to elevate their privileges. This issue poses a significant risk to system security and requires immediate attention from administrators to apply relevant patches or workarounds.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Novell NetWare

Affected Vendors

Novell Inc

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlRJi
https://www.cve.org/CVERecord?id=CVE-1999-1215
https://nvd.nist.gov/vuln/detail/CVE-1999-1215

Back to Vulnerability Database