CVE-1999-0038

HIGH

Data General DG UX - Buffer Overflow

Title source: rule

Exploitation Summary

EIP tracks 2 public exploits for CVE-1999-0038.

AI-analyzed exploit summary This is a classic stack-based buffer overflow exploit for xlock, leveraging a vulnerable command-line argument to overwrite the return address and execute arbitrary shellcode. The exploit targets a suid root binary to achieve local privilege escalation.

Description

Buffer overflow in xlock program allows local users to execute commands as root.

Exploits (2)

exploitdb WORKING POC

clocalunix

https://www.exploit-db.com/exploits/19172

View Code ZIP pw:eip

This is a classic stack-based buffer overflow exploit for xlock, leveraging a vulnerable command-line argument to overwrite the return address and execute arbitrary shellcode. The exploit targets a suid root binary to achieve local privilege escalation.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: xlock (version not specified, likely pre-1997)

No auth needed

Prerequisites: xlock installed as suid root · xlock located at /usr/X11/bin/xlock

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 19, 2026 Full analysis →

exploitdb WORKING POC

clocalunix

https://www.exploit-db.com/exploits/19173

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in xlock (CVE-1999-0038) to achieve local privilege escalation. It constructs a malicious environment variable and overflows the buffer to execute arbitrary shellcode, potentially granting root access.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: xlock (version not specified)

No auth needed

Prerequisites: Local access to the target system · xlock installed and executable

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry x_refsource_misc

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0038

Scores

CVSS v3 8.4

EPSS 0.0012

EPSS Percentile 31.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-120

Status published

Products (42)

bsdi/bsd_os 2.1

data_general/dg_ux 1.0

data_general/dg_ux 2.0

data_general/dg_ux 3.0

data_general/dg_ux 4.0

data_general/dg_ux 5.0

data_general/dg_ux 6.0

data_general/dg_ux 7.0

debian/debian_linux 0.93

debian/debian_linux 1.1

... and 32 more

Published Apr 26, 1997

Tracked Since Feb 18, 2026