CVE Vulnerabilities

CVE-1999-1468

Published: Oct 22, 1991 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.2 MEDIUM
AV:L/AC:H/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.

Affected Software

Name Vendor Start Version End Version
Next Next 2.0 (including) 2.0 (including)
Next Next 2.1 (including) 2.1 (including)
Irix Sgi 3.3 (including) 3.3 (including)
Irix Sgi 3.3.1 (including) 3.3.1 (including)
Irix Sgi 3.3.2 (including) 3.3.2 (including)
Irix Sgi 3.3.3 (including) 3.3.3 (including)
Irix Sgi 4.0 (including) 4.0 (including)

References