What is the vulnerability associated with CVE-1999-0824?

CVE-1999-0824 allows a Windows NT user to map a drive letter to a folder using SUBST, which may not be unmapped after logout, posing a risk for later users.

What versions of Windows NT are affected by CVE-1999-0824?

CVE-1999-0824 affects all versions of Microsoft Windows NT 4.0, including service packs SP1 through SP6.

What are the potential risks of CVE-1999-0824?

The risks of CVE-1999-0824 include unauthorized access and modification of files in folders accessed by future users.

How can I mitigate the risk of CVE-1999-0824?

To mitigate CVE-1999-0824, ensure that users are not allowed to use the SUBST command or consider logging off users properly to clear mapped drives.

Is there a patch available for CVE-1999-0824?

There is no specific patch for CVE-1999-0824, but best practices in user management can help mitigate the risks.

Vulnerability/
CVE-1999-0824

medium

4.6

CWE

NVD-CWE-Other

30/11/1999

25/4/2000

20/11/2024

CVE-1999-0824

First published: Tue Nov 30 1999(Updated: )

A Windows NT user can use SUBST to map a drive letter to a folder, which is not unmapped after the user logs off, potentially allowing that user to modify the location of folders accessed by later users.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Microsoft Windows NT	=4.0
Microsoft Windows NT	=4.0-sp2
Microsoft Windows NT	=4.0-sp1
Microsoft Windows NT	=4.0-sp4
Microsoft Windows NT	=4.0-sp6
Microsoft Windows NT	=4.0-sp3
Microsoft Windows NT	=4.0-sp5
	=4.0
	=4.0-sp1
	=4.0-sp2
	=4.0-sp3
	=4.0-sp4
	=4.0-sp5
	=4.0-sp6

Never miss a vulnerability like this again

Reference Links

http://www.securityfocus.com/bid/833

Frequently Asked Questions

What is the vulnerability associated with CVE-1999-0824?
CVE-1999-0824 allows a Windows NT user to map a drive letter to a folder using SUBST, which may not be unmapped after logout, posing a risk for later users.
What versions of Windows NT are affected by CVE-1999-0824?
CVE-1999-0824 affects all versions of Microsoft Windows NT 4.0, including service packs SP1 through SP6.
What are the potential risks of CVE-1999-0824?
The risks of CVE-1999-0824 include unauthorized access and modification of files in folders accessed by future users.
How can I mitigate the risk of CVE-1999-0824?
To mitigate CVE-1999-0824, ensure that users are not allowed to use the SUBST command or consider logging off users properly to clear mapped drives.
Is there a patch available for CVE-1999-0824?
There is no specific patch for CVE-1999-0824, but best practices in user management can help mitigate the risks.

agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/references
agent/description
agent/last-modified-date
agent/author
agent/softwarecombine
agent/event
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-historical
collector/nvd-index
vendor/microsoft
canonical/microsoft windows nt
version/microsoft windows nt/4.0
version/microsoft windows nt/4.0-sp1
version/microsoft windows nt/4.0-sp2
version/microsoft windows nt/4.0-sp3
version/microsoft windows nt/4.0-sp4
version/microsoft windows nt/4.0-sp5
version/microsoft windows nt/4.0-sp6

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.