CVE-1999-1304

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Nov 30, 1994
Updated: Nov 20, 2024

Summary

CVE-1999-1304 is a significant vulnerability affecting SCO UNIX 4.2 and earlier versions. This issue grants local users the ability to elevate their privileges to root access, bypassing standard security measures. Exploiting this vulnerability requires no network access, making it a serious threat even in secure environments. The root cause stems from a flawed implementation of the login process, which can be exploited through a carefully crafted sequence of commands. Mitigation involves applying available patches or upgrading to a more secure version of the operating system.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • SCO Unix

Affected Vendors

  • Santa Cruz Operation
  • California State Controller’s Office
  • SCO