CVE-1999-1496

low

Description

Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the target filename as a program, which generates a different error message when the file does not exist.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/2277

http://www.securityfocus.com/bid/321

http://www.securityfocus.com/archive/1/14665

Details

Source: Mitre, NVD

Published: 1999-06-08

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 2.1

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 3.3

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Severity: Low

EPSS

EPSS: 0.00089