4.6
CVE-1999-1048
- EPSS 0.54%
- Veröffentlicht 05.09.1998 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:35
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Buffer overflow in bash 2.0.0, 1.4.17, and other versions allows local attackers to gain privileges by creating an extremely large directory name, which is inserted into the password prompt via the \w option in the PS1 environmental variable when another user changes into that directory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Debian ≫ Debian Linux Version1.3.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.54% | 0.41 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=87602746719555&w=2
http://www.debian.org/security/1998/19980909
http://www.osvdb.org/8345
http://www.securityfocus.com/archive/1/10542
https://exchange.xforce.ibmcloud.com/vulnerabilities/3414