Vulnerability Details CVE-1999-1468
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.1%
CVSS Severity
CVSS v2 Score 6.2
References
- http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.html
- http://www.cert.org/advisories/CA-91.20.rdist.vulnerability
- http://www.iss.net/security_center/static/7160.php
- http://www.osvdb.org/8106
- http://www.securityfocus.com/bid/31
- http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.html
- http://www.cert.org/advisories/CA-91.20.rdist.vulnerability
- http://www.iss.net/security_center/static/7160.php
- http://www.osvdb.org/8106
- http://www.securityfocus.com/bid/31
Products affected by CVE-1999-1468
-
cpe:2.3:a:next:next:2.0
-
cpe:2.3:a:next:next:2.1
-
cpe:2.3:o:cray:unicos:6.0
-
cpe:2.3:o:cray:unicos:6.0e
-
cpe:2.3:o:cray:unicos:6.1
-
cpe:2.3:o:sgi:irix:3.3
-
cpe:2.3:o:sgi:irix:3.3.1
-
cpe:2.3:o:sgi:irix:3.3.2
-
cpe:2.3:o:sgi:irix:3.3.3
-
cpe:2.3:o:sgi:irix:4.0
-
cpe:2.3:o:sun:sunos:4.0.3
-
cpe:2.3:o:sun:sunos:4.0.3c
-
cpe:2.3:o:sun:sunos:4.1
-
cpe:2.3:o:sun:sunos:4.1.1
-
cpe:2.3:o:sun:sunos:4.1psr_a