CVE-1999-0754 : The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the

The INN inndstart program allows local users to gain privileges by specifying an alternate configuration file using the INNCONF environmental variable.

Published 1999-05-11 04:00:00

Updated 2008-09-09 12:35:20

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-1999-0754

Probability of exploitation activity in the next 30 days: 0.43%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 74 % EPSS Score History EPSS FAQ

CVSS scores for CVE-1999-0754

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-1999-0754

http://www.securityfocus.com/bid/255
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-1999-011.0.txt
http://www.redhat.com/corp/support/errata/inn99_05_22.html

Patch;Vendor Advisory

Products affected by CVE-1999-0754

ISC » INN
cpe:2.3:a:isc:inn:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-1999-0754

Exploit prediction scoring system (EPSS) score for CVE-1999-0754

CVSS scores for CVE-1999-0754

References for CVE-1999-0754

Products affected by CVE-1999-0754