CVE-1999-0043

CWE-78OS Command Injection3 documents3 sources
Severity
9.8CRITICAL
EPSS
1.6%
top 18.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
Bsdi BSD OSCaldera OpenlinuxISC INN+4 more
Timeline
PublishedDec 4
Latest updateApr 30

Description

Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages7 packages

NVDisc/inn5 versions+4
NVDbsdi/bsd_os2.1
NVDredhat/linux4.0, 4.1+1

🔴Vulnerability Details

2
GHSA
GHSA-qm75-vj9c-hjcf: Command execution via shell metachars in INN daemon (innd) 12022-04-30
CVEList
CVE-1999-0043: Command execution via shell metachars in INN daemon (innd) 11999-09-29
CVE-1999-0043 (CRITICAL CVSS 9.8) | Command execution via shell metacha | cvebase.io