CVE-1999-1468
Källa: cve@mitre.org
UNKNOWN
6.2 CVSS Score
EXPLOTATION STATUS & MITIGATIONS
EXPLOIT STATUS
NO KNOWN EXPLOIT
REMEDIATION
PATCH AVAILABLE
PÅVERKADE KLIENTER/MJUKVARA
NextSgi IrixCray Unicos
BESKRIVNING
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
TEKNISK DATA
{
"id": "CVE-1999-1468",
"sourceIdentifier": "cve@mitre.org",
"published": "1991-10-22T04:00:00.000",
"lastModified": "2025-04-03T01:03:51.193",
"vulnStatus": "Deferred",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C",
"baseScore": 6.2,
"accessVector": "LOCAL",
"accessComplexity": "HIGH",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 1.9,
"impactScore": 10,
"acInsufInfo": false,
"obtainAllPrivilege": true,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:next:next:2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "EE2FFB2A-88AD-483E-ABE8-38655528F081"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:next:next:2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "4BB7B0B4-2E69-434C-BB18-4400001A9CBC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sgi:irix:3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "41D0212C-EA41-4DF3-9A93-4559545BCD7B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sgi:irix:3.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "3567046C-FE3F-424D-A1B0-D7A43D00B79F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sgi:irix:3.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "40511481-CD42-4EB7-BE2A-7A78964B7D3B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sgi:irix:3.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "D926CDA1-AF2B-4DED-93AE-8F12091E0B23"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sgi:irix:4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "536CB843-5FF6-4BC1-A6DA-92A8CB69D6D4"
}
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cray:unicos:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "3E7725DD-085A-4D3A-8F9E-55C3D4BBDD1B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cray:unicos:6.0e:*:*:*:*:*:*:*",
"matchCriteriaId": "544736F7-0E4F-45C1-811B-114CFCBBC895"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cray:unicos:6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "ACCD6F58-9E37-40F0-AFD5-49523BEA301E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sun:sunos:4.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "5FF99415-1F8D-4926-BB55-240B1F116800"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sun:sunos:4.0.3c:*:*:*:*:*:*:*",
"matchCriteriaId": "27C5561B-F8AE-4AD2-BD1C-E9089F315277"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sun:sunos:4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B5955AC0-3036-4943-B6BD-52DD3E039089"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sun:sunos:4.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "92B19A06-832D-4974-9D08-2CE787228592"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:sun:sunos:4.1psr_a:*:*:*:*:*:*:*",
"matchCriteriaId": "FF90C17C-5B10-45D4-8296-D00EAFA1EB8E"
}
]
}
]
}
],
"references": [
{
"url": "http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.html",
"source": "cve@mitre.org"
},
{
"url": "http://www.cert.org/advisories/CA-91.20.rdist.vulnerability",
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory",
"US Government Resource"
]
},
{
"url": "http://www.iss.net/security_center/static/7160.php",
"source": "cve@mitre.org"
},
{
"url": "http://www.osvdb.org/8106",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/bid/31",
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.html",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.cert.org/advisories/CA-91.20.rdist.vulnerability",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory",
"US Government Resource"
]
},
{
"url": "http://www.iss.net/security_center/static/7160.php",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.osvdb.org/8106",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.securityfocus.com/bid/31",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}Status
Vuln Status:Deferred
Publicerad:10/22/1991
Uppdaterad:4/3/2025
Vector String
AV:L/AC:H/Au:N/C:C/I:C/A:C