CVE-1999-1347
CVSS 2.0 Score 4.6 of 10 (medium)
Details
Summary
CVE-1999-1347 is a vulnerability affecting Red Hat Linux 6.1 and earlier versions. It allows local users with restricted accounts to bypass the execution of the .xsession file, which is used to launch the user's desktop environment. Instead, they can start KDE, Gnome, or another level from the kdm display manager, effectively gaining additional privileges and potentially compromising the system. This issue can pose a security risk, particularly in multi-user environments, where users may have restricted accounts but still require access to certain resources. It is recommended that affected systems be upgraded to a patched version to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Red Hat Enterprise Linux
Affected Vendors
- Red Hat