Lucene search

[email protected]NVD:CVE-1999-1422

HistoryJan 02, 1999 - 5:00 a.m.

CVE-1999-1422

1999-01-0205:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

Percentile

15.7%

JSON

The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, which could allow local users to create Trojan horse programs that are inadvertently executed by other users.

Affected configurations

Nvd

Node

slackwareslackware_linuxMatch2.0.35

slackwareslackware_linuxMatch3.4

VendorProductVersionCPE
slackwareslackware_linux2.0.35cpe:2.3:o:slackware:slackware_linux:2.0.35:*:*:*:*:*:*:*
slackwareslackware_linux3.4cpe:2.3:o:slackware:slackware_linux:3.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
slackware	slackware_linux	2.0.35	cpe:2.3:o:slackware:slackware_linux:2.0.35:::::::*
slackware	slackware_linux	3.4	cpe:2.3:o:slackware:slackware_linux:3.4:::::::*

References

marc.info/?l=bugtraq&m=91540043023167&w=2

www.securityfocus.com/bid/211

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

High

EPSS

Percentile

15.7%

JSON

Related for NVD:CVE-1999-1422

cvelist1 cve1