CVE-1999-0765

SGI IRIX midikeys - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0765. PoCs published by W. Cashdollar.

AI-analyzed exploit summary This is a writeup describing a vulnerability in the setuid root 'midikeys' executable on Irix systems, allowing arbitrary file editing with root privileges via its GUI. The exploit leverages the application's file dialog to open and modify system files, such as /etc/passwd, by manipulating the WINEDITOR environment variable or using alternative editors like gvim or emacs.

Description

SGI IRIX midikeys program allows local users to modify arbitrary files via a text editor.

Exploits (1)

exploitdb WRITEUP VERIFIED
by W. Cashdollar · textlocalirix
https://www.exploit-db.com/exploits/19210

This is a writeup describing a vulnerability in the setuid root 'midikeys' executable on Irix systems, allowing arbitrary file editing with root privileges via its GUI. The exploit leverages the application's file dialog to open and modify system files, such as /etc/passwd, by manipulating the WINEDITOR environment variable or using alternative editors like gvim or emacs.

Classification
Writeup 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: dmedia_eoe.sw.synth (midikeys executable) on Irix 6.2 and 6.5
No auth needed
Prerequisites: Access to an Irix system with the vulnerable midikeys executable installed · Ability to execute the midikeys application · Graphical environment to interact with the midikeys GUI
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Vendor Advisory vendor-advisory x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/19990501-01-A
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/262

Scores

EPSS 0.0522
EPSS Percentile 91.5%

Details

Status published
Products (1)
sgi/irix 6.0
Published May 19, 1999
Tracked Since Feb 18, 2026