CVE-1999-0022

CWE-125Out-of-bounds ReadCWE-121Stack-based Buffer Overflow3 documents3 sources
Severity
7.8HIGH
EPSS
0.2%
top 59.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
Bsdi BSD OSFreebsd FreebsdHP Hp-ux+4 more
Timeline
PublishedJul 3
Latest updateApr 30

Description

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages6 packages

NVDibm/aix11 versions+10
NVDhp/hp-ux10.00
NVDsgi/irix12 versions+11
NVDsun/sunos8 versions+7
NVDbsdi/bsd_os1.1

Also affects: Freebsd 2.0, 2.0.5, 2.1.0

🔴Vulnerability Details

2
GHSA
GHSA-r96j-7gxg-wp39: Local user gains root privileges via buffer overflow in rdist, via expstr() function2022-04-30
CVEList
CVE-1999-0022: Local user gains root privileges via buffer overflow in rdist, via expstr() function1999-09-29
CVE-1999-0022 (HIGH CVSS 7.8) | Local user gains root privileges vi | cvebase.io