CVE-1999-0057

Vacation Program - Command Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0057. PoCs published by HORKimhab.

AI-analyzed exploit summary The repository contains a placeholder markdown file for CVE-1999-0057, a vulnerability in the 'vacation' program that allows remote command execution via sendmail. No functional exploit code, technical details, or proof-of-concept is provided.

Description

Vacation program allows command execution by remote users through a sendmail command.

Exploits (1)

github STUB
by HORKimhab · shellpoc
https://github.com/HORKimhab/poc-cve-collection/tree/main/1999/0xxx/CVE-1999-0057.md

The repository contains a placeholder markdown file for CVE-1999-0057, a vulnerability in the 'vacation' program that allows remote command execution via sendmail. No functional exploit code, technical details, or proof-of-concept is provided.

Classification
Stub 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Theoretical
Target: vacation program (sendmail integration)
No auth needed
Prerequisites: Access to a system running a vulnerable version of the 'vacation' program with sendmail
mistral-large-3 · analyzed Jul 14, 2026 Full analysis →

References (1)

Core 1
Core References
Various Sources vendor-advisory x_refsource_hp
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9811-087

Scores

EPSS 0.0825
EPSS Percentile 94.2%

Details

Status published
Products (10)
eric_allman/vacation
freebsd/freebsd 6.2 stable
hp/hp-ux 9
hp/hp-ux 10.00
hp/hp-ux 10.09
hp/hp-ux 10.24
hp/vvos
ibm/aix
sun/solaris
sun/sunos
Published Nov 16, 1998
Tracked Since Feb 18, 2026