Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0433

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-1999-0433
Last Modified 09 Sep 2008 08:34:31
Published 21 Mar 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-0433

Summary

XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.

Vulnerable Systems

Operating System

  • Netbsd 1.3.2

  • Netbsd 1.3.3

  • Redhat Linux 5.1

  • Redhat Linux 5.2

  • Slackware Linux 3.3

  • Slackware Linux 3.4

  • Slackware Linux 3.5

  • Slackware Linux 3.6

  • Slackware Linux 4.0

  • Suse Linux 5.1

  • Suse Linux 5.2

  • Suse Linux 6.0

  • Suse Linux 6.1

Application

  • Xfree86 Project X11r6 3.3.3



Last Updated: 27 May 2016 10:34:58