CVE-1999-1382
Novell Netware — NVD-CWE-Other
- Published: 1999-12-31T05:00:00.000
- Last modified: 2025-04-03T01:03:51.193
- Vendors: Novell
- Products: Netware
- CWE: NVD-CWE-Other
CVE-1999-1382 — NetWare NFS mode 1 and 2 implements the "Read Only" flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to "Read Only," which NetWare-NFS changes to a setuid root program. [Weakness: NVD-CWE-Other]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No items for this vendor.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
NetWare NFS mode 1 and 2 implements the “Read Only” flag in Unix by changing the ownership of a file to root, which allows local users to gain root privileges by creating a setuid program and setting it to “Read Only,” which NetWare-NFS changes to a setuid root program.
🧠 Explainer: What this vulnerability means
Summary: The issue in Netware by Novell (CWE: unspecified) may enable attacks.
Impact: Potential impact includes remote code execution, data theft, or denial of service.
Mitigation: Until patched, restrict exposure, enforce least privilege, and monitor for suspicious activity.
- http://marc.info/?l=bugtraq&m=88427711321769&w=2 []
- http://marc.info/?l=bugtraq&m=90295697702474&w=2 []
- http://support.novell.com/cgi-bin/search/tidfinder.cgi?2940551 [Patch, Vendor Advisory]
- http://www.iss.net/security_center/static/7246.php []
- http://marc.info/?l=bugtraq&m=88427711321769&w=2 []
- http://marc.info/?l=bugtraq&m=90295697702474&w=2 []
- http://support.novell.com/cgi-bin/search/tidfinder.cgi?2940551 [Patch, Vendor Advisory]
- http://www.iss.net/security_center/static/7246.php []