CVE-1999-0097HP Hp-ux vulnerability

4 documents4 sources
Severity
10.0CRITICALNVD
EPSS
1.1%
top 22.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
HP Hp-uxIBM AIXSUN Solaris+1 more
Timeline
PublishedOct 29
Latest updateApr 30

Description

The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e.g. a pipe character).

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages4 packages

NVDibm/aix11 versions+10
NVDhp/hp-ux16 versions+15
NVDsun/sunos7 versions+6
NVDsun/solaris4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-3rwc-35jw-8w8p: The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e2022-04-30
CVEList
CVE-1999-0097: The AIX FTP client can be forced to execute commands from a malicious server through shell metacharacters (e1999-09-29
CVE-1999-0097 — HP Hp-ux vulnerability | cvebase