CVE-1999-1386
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Dec 31, 1999
Updated: Nov 20, 2024
CWE ID 59
Summary
CVE-1999-1386 is a vulnerability affecting Perl 5.004_04 and earlier versions. This issue permits local users to manipulate symbolic links when the -e option is used, leading to arbitrary file overwriting attacks on the /tmp/perl-eaXXXXX file. The vulnerability can be exploited to gain unintended access or modify critical system files. Perl users are advised to update their software to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Perl
Affected Vendors
- Perl