CVE-1999-1347

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Oct 7, 1999
Updated: Oct 18, 2016

Summary

CVE-1999-1347 is a vulnerability affecting Red Hat Linux 6.1 and earlier versions. It allows local users with restricted accounts to bypass the execution of the .xsession file, which is used to launch the user's desktop environment. Instead, they can start KDE, Gnome, or another level from the kdm display manager, effectively gaining additional privileges and potentially compromising the system. This issue can pose a security risk, particularly in multi-user environments, where users may have restricted accounts but still require access to certain resources. It is recommended that affected systems be upgraded to a patched version to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Red Hat Enterprise Linux

Affected Vendors

  • Red Hat