Vulnerability Name:

CVE-1999-1182 (CCN-7219)

Assigned:1997-07-17
Published:1997-07-17
Updated:2016-10-18
Summary:Buffer overflow in run-time linkers (1) ld.so or (2) ld-linux.so for Linux systems allows local users to gain privileges by calling a setuid program with a long program name (argv[0]) and forcing ld.so/ld-linux.so to report an error.
CVSS v3 Severity:9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: CCN
Type: Caldera International, Inc. Security Advisory SA-1997.11
Vulnerability in ld.so

Source: CCN
Type: BugTraq Mailing List, Tue, 22 Jul 1997 08:47:43 -0500
ld.so vulnerability

Source: CCN
Type: BugTraq Mailing List, Wed, 4 Feb 1998 17:20:39 +0100
An old ld-linux.so hole

Source: MITRE
Type: CNA
CVE-1999-1182

Source: BUGTRAQ
Type: UNKNOWN
19970717 KSR[T] Advisory #2: ld.so

Source: BUGTRAQ
Type: UNKNOWN
19970722 ld.so vulnerability

Source: BUGTRAQ
Type: UNKNOWN
19980204 An old ld-linux.so hole

Source: CCN
Type: KSR[T] Advisory #2
ld.so

Source: CCN
Type: OSVDB ID: 8218
Linux ld.so Program Name Overflow

Source: CCN
Type: OSVDB ID: 8219
Linux ld-linux.so Program Name Overflow

Source: XF
Type: UNKNOWN
dynamic-linkers-bo(7219)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:delix:dld:5.2:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:caldera:openlinux_lite:1.1:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:lst:lst_power_linux:2.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:4.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:linux:4.2:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:5.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:*
  • OR cpe:/o:caldera:openlinux:1.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    delix dld 5.2
    caldera openlinux lite 1.1
    debian debian linux 4.0
    lst lst power linux 2.2
    redhat linux 4.0
    redhat linux 4.1
    redhat linux 4.2
    suse suse linux 5.0
    linux linux kernel *
    caldera openlinux 1.1