Lucene search

[email protected]CVE-1999-1168

HistorySep 12, 2001 - 4:00 a.m.

CVE-1999-1168

2001-09-1204:00:00

[email protected]

web.nvd.nist.gov

cve-1999-1168

linux

iss

symlink attack

temporary file

local user vulnerability

nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file.

Affected configurations

NVD

Node

issinternet_security_scannerMatch5.3linux

CPENameOperatorVersion
iss:internet_security_scanneriss internet security scannereq5.3

CPE	Name	Operator	Version
iss:internet_security_scanner	iss internet security scanner	eq	5.3

References

www.securityfocus.com/archive/1/12640

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-1999-1168

nvd1 cvelist1