CVE Vulnerabilities

CVE-1999-0073

Published: Oct 13, 1995 | Modified: Sep 09, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.

Affected Software

Name Vendor Start Version End Version
Irix Sgi 5.0 5.0
Irix Sgi 5.0.1 5.0.1
Irix Sgi 5.1 5.1
Irix Sgi 5.1.1 5.1.1
Irix Sgi 5.2 5.2
Irix Sgi 5.3 5.3
Irix Sgi 5.3 5.3
Irix Sgi 6.0 6.0
Irix Sgi 6.0.1 6.0.1
Irix Sgi 6.0.1 6.0.1
Irix Sgi 6.1 6.1
Irix Sgi 6.2 6.2
Irix Sgi 6.3 6.3

References