CVE-1999-0043
CRITICALINN - OS Command Injection via Control Message Shell Metacharacters
Title source: llmDescription
Command execution via shell metachars in INN daemon (innd) 1.5 using "newgroup" and "rmgroup" control messages, and others.
References (1)
Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0043
Scores
CVSS v3
9.8
EPSS
0.0158
EPSS Percentile
81.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
total
Details
CWE
CWE-78
Status
published
Products (14)
bsdi/bsd_os
2.1
caldera/openlinux
1.0
isc/inn
1.4sec
isc/inn
1.4sec2
isc/inn
1.4unoff3
isc/inn
1.4unoff4
isc/inn
1.5
nec/goah_intrasv
1.1
nec/goah_networksv
1.2
nec/goah_networksv
2.2
... and 4 more
Published
Dec 04, 1996
Tracked Since
Feb 18, 2026