Privilege Escalation Vulnerability in Slackware Linux 3.2-3.5

Privilege Escalation Vulnerability in Slackware Linux 3.2-3.5

CVE-1999-1434 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

login in Slackware Linux 3.2 through 3.5 does not properly check for an error when the /etc/group file is missing, which prevents it from dropping privileges, causing it to assign root privileges to any local user who logs on to the server.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.