CVE-1999-0298 · Vexday

CVE-1999-0298

EPSS 2.0%

ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://www.nai.com/nai_labs/asp_set/advisory/06_ypbindsetme_adv.asp