CVE-1999-1555

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Jun 11, 1998

Updated: Nov 20, 2024

Summary

CVE-1999-1555 is a vulnerability affecting the Cheyenne InocuLAN Anti-Virus Server in Inoculan 4.0 before Service Pack 2. The issue arises due to the update directory created by the server having "EVERYONE FULL CONTROL" permissions. Malicious local users can exploit this vulnerability and cause Inoculan's antivirus update feature to install a Trojan horse DLL, undermining the very security the software is intended to provide.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlXbe
https://www.cve.org/CVERecord?id=CVE-1999-1555
https://nvd.nist.gov/vuln/detail/CVE-1999-1555

Back to Vulnerability Database

CVE-1999-1555

CVSS 2.0 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations