CVE-1999-1383

Name of the Vulnerable Software and Affected Versions bash versions prior to 1.14.7 tcsh version 6.05

Description The issue allows local users to gain privileges via directory names that contain shell metacharacters, specifically the ` back-tick, which can cause the commands enclosed in the directory name to be executed when the shell expands filenames using the w option in the PS1 variable.

Recommendations For bash versions prior to 1.14.7, update to version 1.14.7 or later to resolve the issue. For tcsh version 6.05, consider disabling the use of the w option in the PS1 variable as a temporary workaround until a patch is available.