CVE-1999-1120

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Jan 4, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-1120 is a vulnerability affecting SGI IRIX 6.4 and earlier versions. The issue lies with the netprint service, which mistakenly trusts the PATH environmental variable when executing the disable program. This flaw enables local users to gain elevated privileges by manipulating the PATH variable to include malicious executables, hence compromising the system's security.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SGI IRAX

Affected Vendors

Saskatchewan Government Insurance

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlQ4i
https://www.cve.org/CVERecord?id=CVE-1999-1120
https://nvd.nist.gov/vuln/detail/CVE-1999-1120

Back to Vulnerability Database