CVE-1999-1496

3 documents3 sources
Severity
2.1LOW
EPSS
0.1%
top 74.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Debian Debian LinuxRedhat LinuxTodd Miller Sudo
Timeline
PublishedJun 8
Latest updateApr 30

Description

Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

NVDredhat/linux6.0

Also affects: Debian Linux 2.1

🔴Vulnerability Details

2
GHSA
GHSA-x6w3-cv3w-952r: Sudo 12022-04-30
CVEList
CVE-1999-1496: Sudo 12001-09-12
CVE-1999-1496 (LOW CVSS 2.1) | Sudo 1.5 in Debian Linux 2.1 and Re | cvebase.io