CVE-1999-1496

Exploit

EPSS 0.09%
Published 08.06.1999 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Todd Miller ≫ Sudo Version1.5

Debian ≫ Debian Linux Version2.1

Redhat ≫ Linux Version6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.09%	0.227

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:P/I:N/A:N

http://www.securityfocus.com/archive/1/14665

Vendor Advisory

Exploit

http://www.securityfocus.com/bid/321

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/2277

https://nvd.nist.gov/vuln/detail/CVE-1999-1496

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-1999-1496

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-1999-1496

EUVD