Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1501

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-1999-1501
Last Modified 10 Sep 2008 03:02:04
Published 08 Apr 1998 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-1999-1501

Summary

(1) ipxchk and (2) ipxlink in SGI OS2 IRIX 6.3 does not properly clear the IFS environmental variable before executing system calls, which allows local users to execute arbitrary commands.

Vulnerable Systems

Operating System

  • Sgi Irix 6.3


References

BID - 71

BID - 70

BUGTRAQ - 19980408 SGI O2 ipx security issue


Last Updated: 27 May 2016 10:35:28