← Back

CVE-1999-1409

nvd nist
Published: Jul 3, 1998Modified: Apr 16, 2026

JSON object

Loading...
2.1
Vector
AV:L/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 3.9 / Impact: 2.9
Source: NVD

Description

The at program in IRIX 6.2 and NetBSD 1.3.2 and earlier allows local users to read portions of arbitrary files by submitting the file to at with the -f argument, which generates error messages that at sends to the user via e-mail.

Affected (11)

Products: Sgi: Irix · Netbsd: Netbsd
Sgi
1 product
Irix
Netbsd
1 product
Netbsd
Configuration A
4 vulnerable
Vulnerable SoftwareAffected Versions
Sgi
Irix
Version 6.2
Irix
Version 6.4
Irix
Version 6.5.1
Irix
Version 6.5
Configuration B
7 vulnerable
Vulnerable SoftwareAffected Versions
Netbsd
Netbsd
Up to 1.3.2
Netbsd
Version 1.0
Netbsd
Version 1.1
Netbsd
Version 1.2.1
Netbsd
Version 1.2
Netbsd
Version 1.3.1
Netbsd
Version 1.3

References (10)

ftp://ftp.NetBSD.ORG/pub/NetBSD/security/advisories/NetBSD-SA1998-004.txt.asc (unsafe URL)
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
ExploitPatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
ftp://ftp.NetBSD.ORG/pub/NetBSD/security/advisories/NetBSD-SA1998-004.txt.asc (unsafe URL)
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.