CVE Catalog

CVE-1999-1480

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.25%

16th percentile — higher than 16% of all known CVEs

Summary

A vulnerability in AIX 4.3 allows local users to create or modify files via a symlink attack in the acledit and aclput tools.

Risk Assessment

An attacker could exploit this vulnerability to unauthorizedly modify critical system files, potentially leading to serious security breaches.

Recommendation

It is recommended to restrict access to the acledit and aclput tools and to monitor the system for potential symlink attack attempts.

Original NVD description (English source)

(1) acledit and (2) aclput in AIX 4.3 allow local users to create or modify files via a symlink attack.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS