CVE-1999-1480
CVSS 2.0 Score 1.2 of 10 (low)
Details
Summary
CVE-1999-1480 is a vulnerability affecting the acledit and aclput utilities in AIX 4.3. This issue allows local users to manipulate file access control lists (ACLs) through a symlink attack. By creating a symbolic link to a file, an attacker can bypass file permissions and modify or create files they should not have access to. This poses a significant security risk, as unauthorized file modification can lead to data theft or system instability. It is recommended that users of AIX 4.3 upgrade to a newer version or apply the appropriate patches to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- IBM AIX
Affected Vendors
- IBM Corporation