CVE-1999-0656

Published: Jan 1, 1999Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The ugidd RPC interface, by design, allows remote attackers to enumerate valid usernames by specifying arbitrary UIDs that ugidd maps to local user and group names.

Affected (1)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	All versions

Related CWEs

CWE-16

References (4)

http://ca.com/au/securityadvisor/vulninfo/Vuln.aspx?ID=1638

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/348

Source: cve@mitre.org

http://ca.com/au/securityadvisor/vulninfo/Vuln.aspx?ID=1638

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/348

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.