Lucene search

[email protected]CVE-1999-0446

HistorySep 29, 1999 - 4:00 a.m.

CVE-1999-0446

1999-09-2904:00:00

[email protected]

web.nvd.nist.gov

cve-1999-0446

denial of service

netbsd 1.3.3

vfs bug

symbolic link

ln command

nvd

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.8%

JSON

Local users can perform a denial of service in NetBSD 1.3.3 and earlier versions by creating an unusual symbolic link with the ln command, triggering a bug in VFS.

Affected configurations

NVD

Node

netbsdnetbsdMatch1.3.1

netbsdnetbsdMatch1.3.2

netbsdnetbsdMatch1.3.3

CPENameOperatorVersion
netbsd:netbsdnetbsdeq1.3.1
netbsd:netbsdnetbsdeq1.3.2
netbsd:netbsdnetbsdeq1.3.3

CPE	Name	Operator	Version
netbsd:netbsd	netbsd	eq	1.3.1
netbsd:netbsd	netbsd	eq	1.3.2
netbsd:netbsd	netbsd	eq	1.3.3

References

www.osvdb.org/7051

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.8%

JSON

Related for CVE-1999-0446

cvelist1 nvd1