CVE-1999-0073

IRIX - Remote Code Execution via Telnet Environment Variable Injection

Title source: llm

Description

Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.

References (4)

Core 4

Core References

Mailing List

http://www.openwall.com/lists/oss-security/2026/03/07/3

Mailing List

http://www.openwall.com/lists/oss-security/2026/03/08/6

Mailing List

http://www.openwall.com/lists/oss-security/2026/02/24/3

Third Party Advisory, VDB Entry x_refsource_misc

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0073

Scores

EPSS 0.0027

EPSS Percentile 50.3%

Details

Status published

Products (18)

digital/osf_1 1.2

digital/osf_1 1.3

digital/osf_1 2.0

digital/osf_1 3.0

digital/osf_1 3.2

digital/unix 3.2g

digital/unix 4.0

sgi/irix 5.0

sgi/irix 5.0.1

sgi/irix 5.1

... and 8 more

Published Oct 13, 1995

Tracked Since Feb 18, 2026