CVE Catalog

CVE-1999-1498

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
0.88%

54th percentile — higher than 54% of all known CVEs

Summary

The pkgtool package in Slackware Linux 3.4 allows a local attacker to read and write to arbitrary files via a symlink attack on the reply file.

Risk Assessment

An attacker could gain access to sensitive data or modify system files, potentially leading to serious security breaches.

Recommendation

It is recommended to upgrade to a newer version of Slackware that addresses this vulnerability and to restrict access to administrative tools to trusted users.

Original NVD description (English source)

Slackware Linux 3.4 pkgtool allows local attacker to read and write to arbitrary files via a symlink attack on the reply file.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS