CVE-1999-1468

rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.

CVSS v2.0 6.2 MEDIUM

6.2^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:H/Au:N/C:C/I:C/A:C

Exploitability : 1.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity HIGH

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.html
http://www.cert.org/advisories/CA-91.20.rdist.vulnerability	Patch Third Party Advisory US Government Resource
http://www.iss.net/security_center/static/7160.php
http://www.osvdb.org/8106
http://www.securityfocus.com/bid/31	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:next:next:2.0:::::::*
	cpe:2.3:a:next:next:2.1:::::::*
	cpe:2.3:o:sgi:irix:3.3:::::::*
	cpe:2.3:o:sgi:irix:3.3.1:::::::*
	cpe:2.3:o:sgi:irix:3.3.2:::::::*
	cpe:2.3:o:sgi:irix:3.3.3:::::::*
	cpe:2.3:o:sgi:irix:4.0:::::::*

Configuration 2 (hide)

OR	cpe:2.3:o:cray:unicos:6.0:::::::*
	cpe:2.3:o:cray:unicos:6.0e:::::::*
	cpe:2.3:o:cray:unicos:6.1:::::::*
	cpe:2.3:o:sun:sunos:4.0.3:::::::*
	cpe:2.3:o:sun:sunos:4.0.3c:::::::*
	cpe:2.3:o:sun:sunos:4.1:::::::*
	cpe:2.3:o:sun:sunos:4.1.1:::::::*
	cpe:2.3:o:sun:sunos:4.1psr_a:::::::*

History

No history.

Information

Published : 1991-10-22 04:00

Updated : 2023-12-10 10:17

NVD link : CVE-1999-1468

Mitre link : CVE-1999-1468

CVE.ORG link : CVE-1999-1468

JSON object : View

Products Affected

cray

unicos

sgi

irix

next

next

sun

sunos

CWE

NVD-CWE-Other

{"id": "CVE-1999-1468", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "HIGH", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "MEDIUM", "obtainAllPrivilege": true, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "1991-10-22T04:00:00.000", "references": [{"url": "http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.html", "source": "cve@mitre.org"}, {"url": "http://www.cert.org/advisories/CA-91.20.rdist.vulnerability", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.iss.net/security_center/static/7160.php", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/8106", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/31", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable."}], "lastModified": "2008-09-10T19:01:59.960", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:next:next:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE2FFB2A-88AD-483E-ABE8-38655528F081"}, {"criteria": "cpe:2.3:a:next:next:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4BB7B0B4-2E69-434C-BB18-4400001A9CBC"}, {"criteria": "cpe:2.3:o:sgi:irix:3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41D0212C-EA41-4DF3-9A93-4559545BCD7B"}, {"criteria": "cpe:2.3:o:sgi:irix:3.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3567046C-FE3F-424D-A1B0-D7A43D00B79F"}, {"criteria": "cpe:2.3:o:sgi:irix:3.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40511481-CD42-4EB7-BE2A-7A78964B7D3B"}, {"criteria": "cpe:2.3:o:sgi:irix:3.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D926CDA1-AF2B-4DED-93AE-8F12091E0B23"}, {"criteria": "cpe:2.3:o:sgi:irix:4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "536CB843-5FF6-4BC1-A6DA-92A8CB69D6D4"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cray:unicos:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3E7725DD-085A-4D3A-8F9E-55C3D4BBDD1B"}, {"criteria": "cpe:2.3:o:cray:unicos:6.0e:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "544736F7-0E4F-45C1-811B-114CFCBBC895"}, {"criteria": "cpe:2.3:o:cray:unicos:6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACCD6F58-9E37-40F0-AFD5-49523BEA301E"}, {"criteria": "cpe:2.3:o:sun:sunos:4.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FF99415-1F8D-4926-BB55-240B1F116800"}, {"criteria": "cpe:2.3:o:sun:sunos:4.0.3c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27C5561B-F8AE-4AD2-BD1C-E9089F315277"}, {"criteria": "cpe:2.3:o:sun:sunos:4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5955AC0-3036-4943-B6BD-52DD3E039089"}, {"criteria": "cpe:2.3:o:sun:sunos:4.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92B19A06-832D-4974-9D08-2CE787228592"}, {"criteria": "cpe:2.3:o:sun:sunos:4.1psr_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF90C17C-5B10-45D4-8296-D00EAFA1EB8E"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}