CVE-1999-1496

CVSS 2.0 Score 2.1 of 10 (low)

Details

Published Jun 8, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1496 is a vulnerability affecting Sudo version 1.5 in Debian Linux 2.1 and Red Hat 6.0. Local users can exploit this issue to determine the existence of arbitrary files. By attempting to execute a non-existent file as a program, they will receive a specific error message if the file does not exist. This error message difference indicates the file's absence, allowing attackers to quietly gather information about the system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Red Hat Enterprise Linux
Debian

Affected Vendors

Debian
Red Hat

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlZA2
https://www.cve.org/CVERecord?id=CVE-1999-1496
https://nvd.nist.gov/vuln/detail/CVE-1999-1496

Back to Vulnerability Database