CVE-1999-1091

MEDIUM

—CVSS v3

5.0CVSS v2

0.52% EPSS (exploit probability)

—CWE

Description

UNIX news readers tin and rtin create the /tmp/.tin_log file with insecure permissions and follow symlinks, which allows attackers to modify the permissions of files writable by the user via a symlink attack.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE