CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-1999-1022

serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls program, which allows local users to gain root privileges via a Trojan horse ls program.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.5%

CVSS Severity

CVSS v2 Score 6.2

References

http://www.securityfocus.com/archive/1/930
http://www.securityfocus.com/bid/464
https://exchange.xforce.ibmcloud.com/vulnerabilities/2111
http://www.securityfocus.com/archive/1/930
http://www.securityfocus.com/bid/464
https://exchange.xforce.ibmcloud.com/vulnerabilities/2111

Products affected by CVE-1999-1022

Sgi » Irix » Version: 4

cpe:2.3:o:sgi:irix:4
Sgi » Irix » Version: 5.2

cpe:2.3:o:sgi:irix:5.2
Sgi » Irix » Version: 5.3

cpe:2.3:o:sgi:irix:5.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-1999-1022

Products

Pricing

Contact Us