Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0149Irix vulnerability

4 documents4 sources
Severity
7.5HIGHNVD
EPSS
7.6%
top 8.14%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
SGI Irix
Timeline
PublishedApr 19
Latest updateMay 3

Description

The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. (dot dot) attack.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDsgi/irix6.2

🔴Vulnerability Details

2
GHSA
GHSA-3699-c5vc-4r22: The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a2022-05-03
CVEList
CVE-1999-0149: The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a1999-09-29

💥Exploits & PoCs

1
Exploit-DB
SGI IRIX 6.2 - cgi-bin wrap1997-04-19
CVE-1999-0149 — SGI Irix vulnerability | cvebase