CVE-1999-1461

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published May 7, 1997

Updated: Nov 20, 2024

Summary

CVE-1999-1461 is a vulnerability affecting the InPerson software on IRIX 5.3 to IRIX 6.5.10. The issue lies in the inpview component, which mistakenly trusts the PATH environmental variable to locate and run the ttsession program. Malicious users can exploit this by manipulating the PATH to instead point to a malicious ttsession program, effectively granting them root access to the system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SGI IRAX

Affected Vendors

Saskatchewan Government Insurance

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlTGT
https://www.cve.org/CVERecord?id=CVE-1999-1461
https://nvd.nist.gov/vuln/detail/CVE-1999-1461

Back to Vulnerability Database