Vulnerability Database

308,379

Total vulnerabilities in the database

CVE-1999-1486

sadc in IBM AIX 4.1 through 4.3, when called from programs such as timex that are setgid adm, allows local users to overwrite arbitrary files via a symlink attack.

Published: Feb 25, 1998
Updated: Nov 9, 2025
CVE: CVE-1999-1486
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 1.2
AV:L/AC:H/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ibm / aix	4.3	4.3.x
ibm / aix	4.2.1	4.2.1.x
ibm / aix	4.1.4	4.1.4.x
ibm / aix	4.2	4.2.x
ibm / aix	4.1.5	4.1.5.x
ibm / aix	4.1.1	4.1.1.x
ibm / aix	4.1.2	4.1.2.x
ibm / aix	4.1	4.1.x
ibm / aix	4.1.3	4.1.3.x

http://techsupport.services.ibm.com/aix/fixes/v4/os/bos.acct.4.3.1.0.info
http://www-1.ibm.com/support/search.wss?rs=0&q=IX75554&apar=only
http://www-1.ibm.com/support/search.wss?rs=0&q=IX76330&apar=only
http://www-1.ibm.com/support/search.wss?rs=0&q=IX76853&apar=only
http://www.securityfocus.com/bid/408
https://exchange.xforce.ibmcloud.com/vulnerabilities/7675

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo