Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0409 โ€” Improper Restriction of Operations within the Bounds of a Memory Buffer in Linux

4 documents4 sources
Severity
4.6MEDIUMNVD
EPSS
0.3%
top 43.82%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Suse Linux
Timeline
PublishedMar 4
Latest updateApr 30

Description

Buffer overflow in gnuplot in Linux version 3.5 allows local users to obtain root access.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

โ–ถNVDsuse/suse_linux3.5, 5.2+1

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-g722-hhhg-4rh7: Buffer overflow in gnuplot in Linux version 3โ†—2022-04-30
โ–ถ
CVEList
CVE-1999-0409: Buffer overflow in gnuplot in Linux version 3โ†—2000-01-04
โ–ถ

๐Ÿ’ฅExploits & PoCs

1
Exploit-DB
S.u.S.E Linux 5.2 - 'gnuplot' Local Overflow / Local Privilege Escalationโ†—1999-03-04
โ–ถ
CVE-1999-0409 โ€” Suse Linux vulnerability | cvebase