CVE-1999-0785
published 1999-05-11CVE-1999-0785: The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file.
PriorityP423high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.51%
39.6th percentile
The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| isc | inn | — | — |
| isc | inn | — | — |
| isc | inn | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
ISC INN 2.0/2.1/2.2 inndstart inn.conf pathrun privileges management (BID-254)
vuldb·2026-04-19·CVSS 7.2
CVE-1999-0785 [HIGH] ISC INN 2.0/2.1/2.2 inndstart inn.conf pathrun privileges management (BID-254)
A vulnerability classified as problematic was found in ISC INN 2.0/2.1/2.2. This vulnerability affects unknown code of the file inn.conf of the component inndstart. Executing a manipulation of the argument pathrun can lead to improper privilege management.
The identification of this vulnerability is CVE-1999-0785. The attack can only be executed locally. There is no exploit available.
Upgrading the affected component is advised.
GHSA
GHSA-5q23-4h8j-66vv: The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn
ghsa_unreviewed·2022-04-30
CVE-1999-0785 [HIGH] GHSA-5q23-4h8j-66vv: The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn
The INN inndstart program allows local users to gain root privileges via the "pathrun" parameter in the inn.conf file.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
1999-05-11
Published