CVE-1999-1471

Published: Jan 1, 1989Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Buffer overflow in passwd in BSD based operating systems 4.3 and earlier allows local users to gain root privileges by specifying a long shell or GECOS field.

Affected (2)

Products: Bsd: Bsd

Bsd

1 product

Bsd

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Bsd Bsd	Version 4.2
Bsd Bsd	Version 4.3

References (6)

http://www.cert.org/advisories/CA-1989-01.html

Source: cve@mitre.org

PatchThird Party AdvisoryUS Government Resource

http://www.iss.net/security_center/static/7152.php

Source: cve@mitre.org

http://www.securityfocus.com/bid/4

Source: cve@mitre.org

PatchVendor Advisory

http://www.cert.org/advisories/CA-1989-01.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party AdvisoryUS Government Resource

http://www.iss.net/security_center/static/7152.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/4

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.