CVE-1999-0138 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-1999-0138

The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.

Published: Jun 26, 1996
Updated: Apr 13, 2023
CVE: CVE-1999-0138
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ibm / aix	4	4.x
linux / linux_kernel	1.2.0	1.2.0.x
nec / ews-ux_v	4.2mp	4.2mp.x
ibm / aix	3.2.5	3.2.5.x
digital / osf_1	1.3	1.3.x
freebsd / freebsd	2.0.5	2.0.5.x
hp / hp-ux	8	8.x
nec / ews-ux_v	4.2	4.2.x
linux / linux_kernel	2.0	2.0.x
hp / hp-ux	9	9.x
hp / hp-ux	10	10.x
freebsd / freebsd	2.1.0	2.1.0.x
nec / asl_ux_4800	-	-
apple / a_ux	3.1.1	3.1.1.x
nec / up-ux_v	4.2mp	4.2mp.x
freebsd / freebsd	2.0	2.0.x

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0138