CVE-1999-0073

3 documents3 sources

Severity

10.0CRITICAL

EPSS

0.3%

top 49.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Digital OSF 1 Digital Unix SGI Irix

Timeline

PublishedOct 13

Latest updateApr 30

Description

Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages3 packages

▶NVDsgi/irix11 versions+10

▶NVDdigital/unix3.2g, 4.0+1

▶NVDdigital/osf_15 versions+4

🔴Vulnerability Details

GHSA

GHSA-g7xr-56w3-vjqh: Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries a↗2022-04-30

▶

CVEList

CVE-1999-0073: Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries a↗1999-09-29

▶