CVE-1999-0730

Debian man-db - Local File Overwrite

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0730. PoCs published by Thomas Fischbacher.

AI-analyzed exploit summary The exploit leverages a predictable temporary file name in the `zsoelim` utility (part of the man package) to create arbitrary files via symlink manipulation. By pre-creating symlinks in `/tmp` with predictable names, an attacker can trick `zsoelim` into following them and writing to arbitrary locations with the victim's permissions.

Description

The zsoelim program in the Debian man-db package allows local users to overwrite files via a symlink attack.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Thomas Fischbacher · textlocallinux
https://www.exploit-db.com/exploits/19243

The exploit leverages a predictable temporary file name in the `zsoelim` utility (part of the man package) to create arbitrary files via symlink manipulation. By pre-creating symlinks in `/tmp` with predictable names, an attacker can trick `zsoelim` into following them and writing to arbitrary locations with the victim's permissions.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: man package (zsoelim utility)
No auth needed
Prerequisites: Local access to the target system · Ability to create symlinks in /tmp
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0730

Scores

EPSS 0.0447
EPSS Percentile 90.3%

Details

Status published
Products (1)
debian/debian_linux 4.0
Published Jun 12, 1999
Tracked Since Feb 18, 2026