CVE-1999-1303

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Nov 30, 1994
Updated: Nov 20, 2024

Summary

CVE-1999-1303 is a significant vulnerability affecting SCO UNIX 4.2 and earlier versions. This issue lies in the prwarn function, which enables local users to exploit the flaw and ultimately gain root access to the system. By manipulating the format string in a specially crafted input, attackers can trigger a stack buffer overflow, escalating their privileges to the highest level. This vulnerability poses a serious threat, as local users with minimal permissions can potentially gain full control over the affected system. Systems running SCO UNIX 4.2 should be urgently updated to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • SCO Unix

Affected Vendors

  • Santa Cruz Operation
  • California State Controller’s Office
  • SCO