CVE-1999-0078

NCR MP-RAS - Arbitrary Command Execution via pcnfsd RPC Arguments

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0078. PoCs published by HORKimhab.

AI-analyzed exploit summary The repository contains a placeholder markdown file for CVE-1999-0078, describing a vulnerability in pcnfsd (rpc.pcnfsd) that allows local users to change file permissions or execute arbitrary commands via RPC calls. However, no functional exploit code or technical details are provided.

Description

pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

Exploits (1)

github STUB
by HORKimhab · shellpoc
https://github.com/HORKimhab/poc-cve-collection/tree/main/1999/0xxx/CVE-1999-0078.md

The repository contains a placeholder markdown file for CVE-1999-0078, describing a vulnerability in pcnfsd (rpc.pcnfsd) that allows local users to change file permissions or execute arbitrary commands via RPC calls. However, no functional exploit code or technical details are provided.

Classification
Stub 95%
Attack Type
Other
Complexity
Unknown
Reliability
Theoretical
Target: pcnfsd (rpc.pcnfsd)
Auth required
Prerequisites: Local access to the target system · pcnfsd service running
mistral-large-3 · analyzed Jul 14, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0078

Scores

EPSS 0.0092
EPSS Percentile 56.2%

Details

Status published
Products (17)
bsdi/bsd_os
freebsd/freebsd 6.2 stable
hp/hp-ux
ibm/aix 3.2
ibm/aix 4.1
ibm/aix 4.2
ncr/mp-ras 2.03
ncr/mp-ras 3.0
ncr/mp-ras 3.01
nec/up-ux_v
... and 7 more
Published Apr 18, 1996
Tracked Since Feb 18, 2026