CVE-1999-0298

ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:slackware:slackware_linux:2.1:*:*:*:*:*:*:*
cpe:2.3:o:slackware:slackware_linux:2.2:*:*:*:*:*:*:*
cpe:2.3:o:slackware:slackware_linux:2.3:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:4.1.3:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:4.1.4:*:*:*:*:*:*:*

History

20 Nov 2024, 23:28

Type Values Removed Values Added
References () http://www.nai.com/nai_labs/asp_set/advisory/06_ypbindsetme_adv.aspĀ - () http://www.nai.com/nai_labs/asp_set/advisory/06_ypbindsetme_adv.aspĀ -

Information

Published : 1997-02-05 05:00

Updated : 2024-11-20 23:28


NVD link : CVE-1999-0298

Mitre link : CVE-1999-0298

CVE.ORG link : CVE-1999-0298


JSON object : View

Products Affected

slackware

  • slackware_linux

sun

  • sunos