CVE-1999-1333

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 31, 1999
Updated: Oct 18, 2016

Summary

CVE-1999-1333 is a vulnerability affecting the ncftp FTP client in Red Hat Linux 5.0 and earlier versions. The automatic download feature of this software is the source of the issue, as it allows remote attackers to execute arbitrary commands by inserting shell metacharacters into the names of files being downloaded. This vulnerability poses a significant security risk, as it enables unauthorized remote access and command execution, potentially leading to serious system compromise.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Red Hat Enterprise Linux

Affected Vendors

  • Red Hat