CVE-1999-1422
Severity:
Pending analysis
Type:
Unavailable / Other
Publication date:
02/01/1999
Last modified:
18/10/2016
Description
The default configuration of Slackware 3.4, and possibly other versions, includes . (dot, the current directory) in the PATH environmental variable, which could allow local users to create Trojan horse programs that are inadvertently executed by other users.
Impact
Base Score 2.0
7.20
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:slackware:slackware_linux:2.0.35:*:*:*:*:*:*:* | ||
cpe:2.3:o:slackware:slackware_linux:3.4:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page