CVE-1999-1480

CVSS 2.0 Score 1.2 of 10 (low)

Details

Published Jun 11, 1998
Updated: Nov 20, 2024

Summary

CVE-1999-1480 is a vulnerability affecting the acledit and aclput utilities in AIX 4.3. This issue allows local users to manipulate file access control lists (ACLs) through a symlink attack. By creating a symbolic link to a file, an attacker can bypass file permissions and modify or create files they should not have access to. This poses a significant security risk, as unauthorized file modification can lead to data theft or system instability. It is recommended that users of AIX 4.3 upgrade to a newer version or apply the appropriate patches to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share