CVE-1999-1434
CVSS 2.0 Score 7.2 of 10 (high)
Details
Published Jul 13, 1998
Updated: Nov 20, 2024
Summary
CVE-1999-1434 is a vulnerability affecting Slackware Linux versions 3.2 to 3.5. The issue arises from the login process failing to verify the existence of the /etc/group file during privilege dropping. Consequently, any local user who logs into the server is granted root privileges due to the missing file check. This vulnerability can lead to serious security implications if exploited, making it essential for affected systems to be updated or patched promptly.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Slackware