What is the severity of CVE-1999-1225?

CVE-1999-1225 is considered a moderate security vulnerability since it allows attackers to infer the existence of files on the server.

What types of systems are affected by CVE-1999-1225?

CVE-1999-1225 affects Linux, Ultrix, NetBSD, OpenBSD, and Oracle Solaris systems.

How do I fix CVE-1999-1225?

To fix CVE-1999-1225, configure the rpc.mountd service properly to restrict access and prevent information leakage.

Can CVE-1999-1225 be exploited remotely?

Yes, CVE-1999-1225 can be exploited by remote attackers who can attempt to mount files.

What kind of information can attackers gain from CVE-1999-1225?

Attackers can determine the existence of specific files on the server through varying error messages generated by the rpc.mountd service.

Vulnerability/
CVE-1999-1225

medium

CWE

NVD-CWE-Other

24/8/1997

12/9/2001

20/11/2024

CVE-1999-1225

First published: Sun Aug 24 1997(Updated: )

rpc.mountd on Linux, Ultrix, and possibly other operating systems, allows remote attackers to determine the existence of a file on the server by attempting to mount that file, which generates different error messages depending on whether the file exists or not.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Digital Ultrix
Linux Kernel	=2.6.20.1
NetBSD current	=2.0.4
OpenBSD
Oracle Solaris and Zettabyte File System (ZFS)

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-1999-1225?
CVE-1999-1225 is considered a moderate security vulnerability since it allows attackers to infer the existence of files on the server.
What types of systems are affected by CVE-1999-1225?
CVE-1999-1225 affects Linux, Ultrix, NetBSD, OpenBSD, and Oracle Solaris systems.
How do I fix CVE-1999-1225?
To fix CVE-1999-1225, configure the rpc.mountd service properly to restrict access and prevent information leakage.
Can CVE-1999-1225 be exploited remotely?
Yes, CVE-1999-1225 can be exploited by remote attackers who can attempt to mount files.
What kind of information can attackers gain from CVE-1999-1225?
Attackers can determine the existence of specific files on the server through varying error messages generated by the rpc.mountd service.

agent/type
agent/first-publish-date
agent/references
agent/weakness
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/author
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-api
source/NVD
agent/software-canonical-lookup
collector/nvd-historical
vendor/digital
canonical/digital ultrix
vendor/linux
canonical/linux kernel
version/linux kernel/2.6.20.1
vendor/netbsd
canonical/netbsd current
version/netbsd current/2.0.4
vendor/openbsd
canonical/openbsd
vendor/sun
canonical/oracle solaris and zettabyte file system (zfs)

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.