CVE-1999-1229
CVSS 2.0 Score 2.1 of 10 (low)
Details
Published Feb 25, 1998
Updated: Dec 19, 2017
Summary
CVE-1999-1229 is a vulnerability affecting Quake 2 server version 3.13 on Linux systems. The issue arises due to insufficient file permission checks for the config.cfg configuration file. An attacker can create a symbolic link from config.cfg to any file on the system, thereby allowing local users to read arbitrary files. This vulnerability may pose a risk to sensitive data and system integrity. It is recommended that affected Quake 2 servers be updated to a patched version to mitigate this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share