CVE-1999-0433

Redhat Linux — NVD-CWE-Other

EPSS 0.00172
  • Published: 1999-03-21T05:00:00.000
  • Last modified: 2025-04-03T01:03:51.193
  • Vendors: Redhat, Xfree86 Project
  • Products: Linux, X11r6
  • CWE: NVD-CWE-Other

CVE-1999-0433 — XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. [Weakness: NVD-CWE-Other]

Related CVE by CWE

No closely related CVE found.

Risk snapshot

EPSS: n/a   |   KEV: not listed

Related CVE by CWE

No related CWE found.

Top CVE for Vendor

No items for this vendor.

Recently Exploited Similar Vulnerabilities

No recent KEV-listed items for this vendor/product.

XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.

🧠 Explainer: What this vulnerability means

Summary: The issue in Linux by Redhat (CWE: unspecified) may enable attacks.

Impact: It may allow privilege escalation, data exposure, or service interruption.

Mitigation: Until patched, restrict exposure, enforce least privilege, and monitor for suspicious activity.

CWE: NVD-CWE-Other
Redhat Xfree86 Project Linux X11r6

No explicit mitigation/advisory links found in references.