Vulnerability Description
rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Digital | Ultrix | All versions |
| Linux | Linux Kernel | 2.6.20.1 |
| Netbsd | Netbsd | 2.0.4 |
| Openbsd | Openbsd | All versions |
| Sun | Solaris | All versions |
References
- http://www.securityfocus.com/archive/1/7526
- https://exchange.xforce.ibmcloud.com/vulnerabilities/347
- http://www.securityfocus.com/archive/1/7526
- https://exchange.xforce.ibmcloud.com/vulnerabilities/347
FAQ
What is CVE-1999-1225?
CVE-1999-1225 is a vulnerability with a CVSS score of 5.0 (MEDIUM). rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates differen...
How severe is CVE-1999-1225?
CVE-1999-1225 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1225?
Check the references section above for vendor advisories and patch information. Affected products include: Digital Ultrix, Linux Linux Kernel, Netbsd Netbsd, Openbsd Openbsd, Sun Solaris.