CVE-1999-1468
published 1991-10-22CVE-1999-1468: rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator)…
PriorityP414medium6.2CVSS 2.0
AVLACHAuNCCICAC
EPSS
0.34%
25.9th percentile
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cray | unicos | — | — |
| cray | unicos | — | — |
| cray | unicos | — | — |
| next | next | — | — |
| next | next | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sun | sunos | — | — |
| sun | sunos | — | — |
| sun | sunos | — | — |
| sun | sunos | — | — |
| sun | sunos | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
rdist Sendmail privileges management (XFDB-7160 / BID-31)
vuldb·2026-04-16·CVSS 6.2
CVE-1999-1468 [MEDIUM] rdist Sendmail privileges management (XFDB-7160 / BID-31)
A vulnerability, which was classified as problematic, has been found in rdist. This affects an unknown function of the component Sendmail. The manipulation leads to improper privilege management.
This vulnerability is uniquely identified as CVE-1999-1468. Local access is required to approach this attack. No exploit exists.
GHSA
GHSA-9pmj-mqc2-hx2p: rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Se
ghsa_unreviewed·2022-04-30
CVE-1999-1468 [MEDIUM] GHSA-9pmj-mqc2-hx2p: rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Se
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.htmlhttp://www.cert.org/advisories/CA-91.20.rdist.vulnerabilityhttp://www.iss.net/security_center/static/7160.phphttp://www.osvdb.org/8106http://www.securityfocus.com/bid/31http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.htmlhttp://www.cert.org/advisories/CA-91.20.rdist.vulnerabilityhttp://www.iss.net/security_center/static/7160.phphttp://www.osvdb.org/8106http://www.securityfocus.com/bid/31
1991-10-22
Published