Cfingerd with ALLOW_EXECUTION enabled does not properly drop privileges when it executes a program on behalf of the user, allowing local users to gain root privileges.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0813
