CVE-1999-1434

Loading...

General

Score:7.2/10.0
Severity:Medium
Category:N/A
Exploit:Available

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Local
Access Complexity:Low
Authentication:None

Published on 13/07/98 - Updated on 18/10/16

Description

login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-1999-1434

Exploits

Exploit-DBEDB-19122
SecurityFocusBID-155

Relative technologies

VendorProduct
slackwareslackware_linux

Share this vulnerability with:

Twitter Facebook LinkedIn Mail