CVE Catalog
CVE-1999-1498
LowExploitation Probability (EPSS)
Elevated risk0.88%
54th percentile — higher than 54% of all known CVEs
Summary
The pkgtool package in Slackware Linux 3.4 allows a local attacker to read and write to arbitrary files via a symlink attack on the reply file.
Risk Assessment
An attacker could gain access to sensitive data or modify system files, potentially leading to serious security breaches.
Recommendation
It is recommended to upgrade to a newer version of Slackware that addresses this vulnerability and to restrict access to administrative tools to trusted users.
Original NVD description (English source)
Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.

