Lucene search

[email protected]CVE-1999-0039

HistoryMay 06, 1997 - 4:00 a.m.

CVE-1999-0039

1997-05-0604:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-1999-0039

sgi irix

remote attack

webdist.cgi

shell metacharacters

command execution

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.046 Low

EPSS

Percentile

92.4%

JSON

webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter.

CPENameOperatorVersion
sgi:irixsgi irixeq5.3
sgi:irixsgi irixeq6.1
sgi:irixsgi irixeq5.0
sgi:irixsgi irixeq5.1
sgi:irixsgi irixeq5.2
sgi:irixsgi irixeq6.3
sgi:irixsgi irixeq6.2

CPE	Name	Operator	Version
sgi:irix	sgi irix	eq	5.3
sgi:irix	sgi irix	eq	6.1
sgi:irix	sgi irix	eq	5.0
sgi:irix	sgi irix	eq	5.1
sgi:irix	sgi irix	eq	5.2
sgi:irix	sgi irix	eq	6.3
sgi:irix	sgi irix	eq	6.2

References

ftp://patches.sgi.com/support/free/security/advisories/19970501-02-PX

www.cert.org/advisories/CA-1997-12.html

www.osvdb.org/235

www.securityfocus.com/bid/374

exchange.xforce.ibmcloud.com/vulnerabilities/333

7.9 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.046 Low

EPSS

Percentile

92.4%

JSON

Related for CVE-1999-0039

nessus1