CVE-1999-1386

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 31, 1999
Updated: Nov 20, 2024
CWE ID 59

Summary

CVE-1999-1386 is a vulnerability affecting Perl 5.004_04 and earlier versions. This issue permits local users to manipulate symbolic links when the -e option is used, leading to arbitrary file overwriting attacks on the /tmp/perl-eaXXXXX file. The vulnerability can be exploited to gain unintended access or modify critical system files. Perl users are advised to update their software to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share