CVE-1999-1333

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 31, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1333 is a vulnerability affecting the ncftp FTP client version 2.4.2 in Red Hat Linux 5.0 and earlier. The automatic download feature of this software is the source of the issue, as it allows remote attackers to execute arbitrary commands by using shell metacharacters in the file names of data being transferred. This vulnerability poses a serious security risk, as an unauthorized user could gain control over the compromised system. It is important for users of the affected software to apply the relevant patches or updates as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Red Hat Enterprise Linux

Affected Vendors

Red Hat

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners