Vulnerability Details : CVE-1999-1288
Samba 1.9.18 inadvertently includes a prototype application, wsmbconf, which is installed with incorrect permissions including the setgid bit, which allows local users to read and write files and possibly gain privileges via bugs in the program.
Exploit prediction scoring system (EPSS) score for CVE-1999-1288
Probability of exploitation activity in the next 30 days: 0.06%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 23 % EPSS Score History EPSS FAQ
CVSS scores for CVE-1999-1288
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.6
|
MEDIUM | AV:L/AC:L/Au:N/C:P/I:P/A:P |
3.9
|
6.4
|
NIST |
References for CVE-1999-1288
Products affected by CVE-1999-1288
- cpe:2.3:o:redhat:linux:*:*:*:*:*:*:*:*
- cpe:2.3:o:caldera:openlinux:1.2:*:*:*:*:*:*:*
- cpe:2.3:o:caldera:openlinux:1.0:*:*:*:*:*:*:*
- cpe:2.3:o:caldera:openlinux:1.3:*:*:*:*:*:*:*
- cpe:2.3:o:caldera:openlinux:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:samba:samba:1.9.18:*:*:*:*:*:*:*
- cpe:2.3:o:turbolinux:turbolinux:*:*:*:*:*:*:*:*