CVE-1999-1392
CVSS 2.0 Score 7.2 of 10 (high)
Details
Summary
CVE-1999-1392 is a vulnerability affecting NeXT 1.0a and 1.0 restore0.9 installation scripts. This issue permits local users to elevate their privileges to root level, potentially allowing unauthorized access and control over the system. Successful exploitation of this vulnerability can result in significant security risks, including data theft, unauthorized modification of files, and system instability. The root cause of the vulnerability is a lack of proper access control in the restore0.9 script, allowing users to bypass security measures and gain privileged access. System administrators are strongly advised to upgrade their NeXT installations to a patched version as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- NeXT, Inc.