Intelligence Center » Browse All Vulnerabilities » CVE-1999-1409
Overview |
|
| Vulnerability Score |  2.1 |
| CVE Id | CVE-1999-1409 |
| Last Modified | 10 Sep 2008 03:01:53 |
| Published | 03 Jul 1998 12:00:00 |
| Confidentiality Impact |  PARTIAL |
| Integrity Impact | NONE |
| Availability Impact | NONE |
| Access Vector | LOCAL |
| Access Complexity | LOW |
| Authentication | NONE |
CVE-1999-1409
Summary
The at program in IRIX 6.2 and NetBSD 1.3.2 and earlier allows local users to read portions of arbitrary files by submitting the file to at with the -f argument, which generates error messages that at sends to the user via e-mail.
Vulnerable Systems
Operating System
Netbsd 1.0
Netbsd 1.1
Netbsd 1.2
Netbsd 1.2.1
Netbsd 1.3
Netbsd 1.3.1
Netbsd 1.3.2
Sgi Irix 6.2
Sgi Irix 6.4
Sgi Irix 6.5
Sgi Irix 6.5.1
References
BUGTRAQ - 19980703 more about 'at'
BID - 331
BUGTRAQ - 19980805 irix-6.2 "at -f" vulnerability
NETBSD - NetBSD-SA1998-004
IT Risk Posture:
Free Risk Assessment Tools
Application Scanner
Find vulnerabilities on your network.
Device Scanner
Find vulnerabilities on your network.
Patch Scanner
Find vulnerabilities on your network.
Last Updated: 27 May 2016 10:35:24
