CyberSec.Space Logo
Back to CVE Browser

CVE-1999-0498

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0380%
EPSS Percentile33.40th
PublishedSep 27, 1991
Last ModifiedApr 16, 2026

Vulnerability Description

TFTP is not running in a restricted directory, allowing a remote attacker to access sensitive information such as password files.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0498
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0498

Related Vulnerabilities

CVE-1999-146710.0

Vulnerability in rcp on SunOS 4.0.x allows remote attackers from trusted hosts to execute arbitrary commands as root, possibly rel...

CVE-1999-008210.0

CWD ~root command in ftpd allows root access.

CVE-1999-009510.0

The debug command in Sendmail is enabled, allowing attackers to execute commands as root.

CVE-1999-119310.0

The "me" user in NeXT NeXTstep 2.1 and earlier has wheel group privileges, which could allow the me user to use the su command to ...