Lucene search

[email protected]CVE-1999-0956

HistorySep 19, 1997 - 4:00 a.m.

CVE-1999-0956

1997-09-1904:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

netinfo

root privileges

dos attack

local users

cve-1999-0956

7.4 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

The NeXT NetInfo _writers property allows local users to gain root privileges or conduct a denial of service.

CPENameOperatorVersion
next:nextstepnext nextstepeq3.0
next:nextstepnext nextstepeq2.1
next:nextstepnext nextstepeq1.0a
next:nextstepnext nextstepeq2.0
next:nextstepnext nextstepeq1.0

CPE	Name	Operator	Version
next:nextstep	next nextstep	eq	3.0
next:nextstep	next nextstep	eq	2.1
next:nextstep	next nextstep	eq	1.0a
next:nextstep	next nextstep	eq	2.0
next:nextstep	next nextstep	eq	1.0

References

exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0956

7.4 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON