Vulnerability Description
Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.so/ld-linux.so to report an error.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Delix | Dld | 5.2 |
| Caldera | Openlinux Lite | 1.1 |
| Debian | Debian Linux | 4.0 |
| Lst | Lst Power Linux | 2.2 |
| Redhat | Linux | 4.0 |
| Suse | Suse Linux | 5.0 |
References
- http://marc.info/?l=bugtraq&m=87602661419318&w=2
- http://marc.info/?l=bugtraq&m=87602661419351&w=2
- http://marc.info/?l=bugtraq&m=88661732807795&w=2
- http://marc.info/?l=bugtraq&m=87602661419318&w=2
- http://marc.info/?l=bugtraq&m=87602661419351&w=2
- http://marc.info/?l=bugtraq&m=88661732807795&w=2
FAQ
What is CVE-1999-1182?
CVE-1999-1182 is a vulnerability with a CVSS score of 7.2 (HIGH). Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.s...
How severe is CVE-1999-1182?
CVE-1999-1182 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1182?
Check the references section above for vendor advisories and patch information. Affected products include: Delix Dld, Caldera Openlinux Lite, Debian Debian Linux, Lst Lst Power Linux, Redhat Linux.