CVE-1999-1468

CVSS 2.0 Score 6.2 of 10 (medium)

Details

Published Oct 22, 1991

Updated: Nov 20, 2024

Summary

CVE-1999-1468 is a vulnerability affecting the rdist utility found in various UNIX systems. The issue arises due to the use of the popen function to execute sendmail. Maliciously modifying the Internal Field Separator (IFS) variable allows local users to execute arbitrary commands, effectively gaining root privileges. This vulnerability poses a significant security risk and should be addressed promptly by affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SunOS
Cray Unicos

Affected Vendors

Oracle Corp
CRAY

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlMPl
https://www.cve.org/CVERecord?id=CVE-1999-1468
https://nvd.nist.gov/vuln/detail/CVE-1999-1468

Back to Vulnerability Database