CVE-1999-0039

Description

webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

Affected products

sgi / irix5.0 – 5.0
sgi / irix5.1 – 5.1
sgi / irix5.2 – 5.2
sgi / irix5.3 – 5.3
sgi / irix6.1 – 6.1
sgi / irix6.2 – 6.2
sgi / irix6.3 – 6.3

References

VENDOR_ADVISORYftp://patches.sgi.com/support/free/security/advisories/19970501-02-PX
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/333
VENDOR_ADVISORYhttp://www.cert.org/advisories/CA-1997-12.html
MISChttp://www.securityfocus.com/bid/374
MISChttp://www.osvdb.org/235