Vulnerability Description
shell-lock in Cactus Software Shell Lock allows local users to read or modify decoded shell files before they are executed, via a symlink attack on a temporary file.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cactus Software | Shell-Lock | All versions |
References
- http://marc.info/?l=bugtraq&m=93916168802365&w=2
- http://www.atstake.com/research/advisories/1999/shell-lock.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3358
- http://marc.info/?l=bugtraq&m=93916168802365&w=2
- http://www.atstake.com/research/advisories/1999/shell-lock.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3358
FAQ
What is CVE-1999-1541?
CVE-1999-1541 is a vulnerability with a CVSS score of 7.2 (HIGH). shell-lock in Cactus Software Shell Lock allows local users to read or modify decoded shell files before they are executed, via a symlink attack on a temporary file.
How severe is CVE-1999-1541?
CVE-1999-1541 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1541?
Check the references section above for vendor advisories and patch information. Affected products include: Cactus Software Shell-Lock.