Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0208IBM AIX vulnerability

5 documents4 sources
Severity
10.0CRITICALNVD
EPSS
44.9%
top 2.41%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
IBM AIXSGI Irix
Timeline
PublishedDec 12
Latest updateApr 30

Description

rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

NVDibm/aix3.2, 4.1+1
NVDsgi/irix5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-fg4r-8mvv-vm28: rpc2022-04-30
CVEList
CVE-1999-0208: rpc1999-09-29

💥Exploits & PoCs

2
Exploit-DB
HP-UX 10/11/ IRIX 3/4/5/6 / OpenSolaris build snv / Solaris 8/9/10 / SunOS 4.1 - 'rpc.ypupdated' Command Execution (2)1994-02-07
Exploit-DB
HP-UX 10/11/ IRIX 3/4/5/6 / OpenSolaris build snv / Solaris 8/9/10 / SunOS 4.1 - 'rpc.ypupdated' Command Execution (1)1994-02-07
CVE-1999-0208 — IBM AIX vulnerability | cvebase