CVE Database · CVE-1999-0298
CVSS v3.1
N/A
EPSS
2.03%
Published
Feb 5, 1997
Modified
Apr 15, 2026
Public PoC / Exploit (1)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
ypbind with -ypset and -ypsetme options activated in Linux Slackware and SunOS allows local and remote attackers to overwrite files via a .. (dot dot) attack.
Affected Products (5)
References (2)
