CVE-1999-1434
CVSS 7.2 - HIGH
Description
login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server.
Affected Products
5| Vendor | Product | Version |
|---|---|---|
| slackware | slackware_linux |
3.1
|
| slackware | slackware_linux |
3.2
|
| slackware | slackware_linux |
3.3
|
| slackware | slackware_linux |
3.4
|
| slackware | slackware_linux |
3.5
|
References
Weakness Types
NVD-CWE-Other
CVE Information
- CVE ID:
CVE-1999-1434- Published:
- 1998-07-13
- Modified:
- 2026-04-16
- CVSS Score:
- 7.2
- Severity:
- HIGH
- Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Vendors
slackware
Quick Actions
CVSS Severity Scale
0.0 - 3.9
LOW
4.0 - 6.9
MEDIUM
7.0 - 8.9
HIGH
9.0 - 10.0
CRITICAL