Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0491

CWE-94 — Code Injection4 documents4 sources

Severity

4.6MEDIUM

EPSS

0.3%

top 46.63%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

GNU Bash

Timeline

PublishedApr 20

Latest updateMay 3

Description

The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDgnu/bash2.04+15

Patches

Patch: ftp.calderasystems.com ↗Patch: ftp.calderasystems.com ↗

🔴Vulnerability Details

GHSA

GHSA-fxcm-gf29-76g5: The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute↗2022-05-03

▶

CVEList

CVE-1999-0491: The prompt parsing in bash allows a local user to execute commands as another user by creating a directory with the name of the command to execute↗2000-06-02

▶

💥Exploits & PoCs

Exploit-DB

GNU GNU bash 1.14 - Path Embedded Code Execution↗1999-04-20

▶