CVE-1999-1499

ISC BIND <8.1 - Local Privilege Escalation

Title source: llm

Description

named in ISC BIND 4.9 and 8.1 allows local users to destroy files via a symlink attack on (1) named_dump.db when root kills the process with a SIGINT, or (2) named.stats when SIGIOT is used.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Joe H · textlocallinux

https://www.exploit-db.com/exploits/19072

View Code ZIP pw:eip

References (2)

Core 2

Core References

Exploit, Vendor Advisory mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/8966

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/80

Scores

EPSS 0.0054

EPSS Percentile 67.7%

Details

Status published

Products (2)

isc/bind 4.9

isc/bind 8.1

Published Apr 10, 1998

Tracked Since Feb 18, 2026