CVE Catalog

CVE-1999-1117

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
0.75%

50th percentile — higher than 50% of all known CVEs

Summary

The vulnerability in lquerypv on AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter.

Risk Assessment

The organization may be exposed to unauthorized access to sensitive data by local users.

Recommendation

It is recommended to restrict access to the lquerypv tool or implement appropriate access controls to the system.

Original NVD description (English source)

lquerypv in AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS