CVE-1999-0039
HIGHSGI IRIX - Remote Command Execution via webdist.cgi distloc Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-1999-0039. PoCs published by anonymous.
AI-analyzed exploit summary This exploit demonstrates a command injection vulnerability in the webdist.cgi script on Silicon Graphics IRIX systems. It allows remote execution of arbitrary commands via the 'distloc' parameter, leveraging the privileges of the httpd daemon.
Description
webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter.
Exploits (1)
This exploit demonstrates a command injection vulnerability in the webdist.cgi script on Silicon Graphics IRIX systems. It allows remote execution of arbitrary commands via the 'distloc' parameter, leveraging the privileges of the httpd daemon.
References (5)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L