CVE-1999-1468

Published Oct 22, 1991

Last updated 16 years ago

Overview

Description: rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
Source: cve@mitre.org
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.2
Impact score: 10
Exploitability score: 1.9
Vector string: AV:L/AC:H/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:next:next:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE2FFB2A-88AD-483E-ABE8-38655528F081"
          },
          {
            "criteria": "cpe:2.3:a:next:next:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4BB7B0B4-2E69-434C-BB18-4400001A9CBC"
          },
          {
            "criteria": "cpe:2.3:o:sgi:irix:3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41D0212C-EA41-4DF3-9A93-4559545BCD7B"
          },
          {
            "criteria": "cpe:2.3:o:sgi:irix:3.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3567046C-FE3F-424D-A1B0-D7A43D00B79F"
          },
          {
            "criteria": "cpe:2.3:o:sgi:irix:3.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "40511481-CD42-4EB7-BE2A-7A78964B7D3B"
          },
          {
            "criteria": "cpe:2.3:o:sgi:irix:3.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D926CDA1-AF2B-4DED-93AE-8F12091E0B23"
          },
          {
            "criteria": "cpe:2.3:o:sgi:irix:4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "536CB843-5FF6-4BC1-A6DA-92A8CB69D6D4"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cray:unicos:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3E7725DD-085A-4D3A-8F9E-55C3D4BBDD1B"
          },
          {
            "criteria": "cpe:2.3:o:cray:unicos:6.0e:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "544736F7-0E4F-45C1-811B-114CFCBBC895"
          },
          {
            "criteria": "cpe:2.3:o:cray:unicos:6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACCD6F58-9E37-40F0-AFD5-49523BEA301E"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:4.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FF99415-1F8D-4926-BB55-240B1F116800"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:4.0.3c:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27C5561B-F8AE-4AD2-BD1C-E9089F315277"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5955AC0-3036-4943-B6BD-52DD3E039089"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:4.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92B19A06-832D-4974-9D08-2CE787228592"
          },
          {
            "criteria": "cpe:2.3:o:sun:sunos:4.1psr_a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF90C17C-5B10-45D4-8296-D00EAFA1EB8E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References