Vulnerabilities > CVE-1999-1168 - Unspecified vulnerability in ISS Internet Security Scanner 5.3

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

iss

NVD

Published: 1999-02-20

Updated: 2008-09-05

Summary

install.iss installation script for Internet Security Scanner (ISS) for Linux, version 5.3, allows local users to change the permissions of arbitrary files via a symlink attack on a temporary file.

Vulnerable Configurations

Part	Description	Count
Application	Iss ISS Internet Security Scanner 5.3	1

References

http://www.securityfocus.com/archive/1/12640