CVE-1999-0434

XFree86 xfs command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.

Score7.5
Access VectorNETWORK
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL
Published1999-03-30 12:00:00.000-05
Last Modified2008-09-09 08:34:31.000-04

Vulnerable Software List

VendorProductVersions
Debian Debian Linux 2.0, 2.0:r5, 2.1
Caldera Openlinux 1.2
Netbsd Netbsd 1.3.3
Redhat Linux 5.1
Suse Suse Linux 5.3

References

SourceLink
BID359