CVE-1999-1296

Mit Kerbero — NVD-CWE-Other

EPSS 0.00063
  • Published: 1997-04-29T04:00:00.000
  • Last modified: 2025-04-03T01:03:51.193
  • Vendors: Mit
  • Products: Kerbero
  • CWE: NVD-CWE-Other

CVE-1999-1296 — Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos configuration file, which can be specified via the KRB_CONF environmental variable. [Weakness: NVD-CWE-Other]

Related CVE by CWE

No closely related CVE found.

Risk snapshot

EPSS: n/a   |   KEV: not listed

Related CVE by CWE

No related CWE found.

Top CVE for Vendor

No items for this vendor.

Recently Exploited Similar Vulnerabilities

No recent KEV-listed items for this vendor/product.

Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos configuration file, which can be specified via the KRB_CONF environmental variable.

🧠 Explainer: What this vulnerability means

Summary: This vulnerability affects Kerbero by Mit (CWE: unspecified).

Impact: It may allow privilege escalation, data exposure, or service interruption.

Mitigation: Apply the latest vendor patch or update to a fixed version; disable vulnerable modules where possible.

CWE: NVD-CWE-Other
Mit Kerbero

No explicit mitigation/advisory links found in references.