CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-1999-1210

xterm in Digital UNIX 4.0B *with* patch kit 5 allows local users to overwrite arbitrary files via a symlink attack on a core dump file, which is created when xterm is called with a DISPLAY environmental variable set to a display that xterm cannot access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.5%

CVSS Severity

CVSS v2 Score 7.2

References

http://marc.info/?l=bugtraq&m=87936891504885&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/613
http://marc.info/?l=bugtraq&m=87936891504885&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/613

Products affected by CVE-1999-1210

Digital » Unix » Version: 4.0b

cpe:2.3:o:digital:unix:4.0b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-1999-1210

Products

Pricing

Contact Us