CVE-1999-0813 — HIGH (7.2) — White Hats Nepal

Q: What is CVE-1999-0813?

CVE-1999-0813 is a vulnerability with a CVSS score of 7.2 (HIGH). Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.

Q: How severe is CVE-1999-0813?

CVE-1999-0813 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-1999-0813?

Check the references section above for vendor advisories and patch information. Affected products include: Infodrom Cfingerd.

Vulnerability Description

Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Infodrom	Cfingerd	<= 1.4.0

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0813
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0813

FAQ

What is CVE-1999-0813?

CVE-1999-0813 is a vulnerability with a CVSS score of 7.2 (HIGH). Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.

How severe is CVE-1999-0813?

CVE-1999-0813 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-1999-0813?

Check the references section above for vendor advisories and patch information. Affected products include: Infodrom Cfingerd.