CVE Catalog

CVE-1999-1205

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.48%

37th percentile — higher than 37% of all known CVEs

Summary

The nettune program in HP-UX 10.01 and 10.00 is installed with setuid root permissions, allowing local users to modify critical networking configuration information, leading to denial of service.

Risk Assessment

Local users can exploit this vulnerability to disrupt system operation, potentially causing serious availability issues for network services.

Recommendation

It is recommended to remove setuid permissions for the nettune program or implement appropriate security measures to restrict access to this tool.

Original NVD description (English source)

nettune in HP-UX 10.01 and 10.00 is installed setuid root, which allows local users to cause a denial of service by modifying critical networking configuration information.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS