CVE-1999-1536

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Jul 30, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1536 is a vulnerability affecting the AcuShop Salesbuilder software. The .sbstart startup script associated with the product is identified as world writable, permitting local users to manipulate the file's content. By appending commands to the file, these users can escalate their privileges and potentially gain unauthorized access to critical system functions. This vulnerability poses a security risk, as it enables attackers to execute arbitrary commands with elevated permissions. It is crucial for system administrators to secure the .sbstart file and restrict its write access to authorized users only.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share