CVE-1999-0979

SCO UnixWare - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0979. PoCs published by Brock Tellier.

AI-analyzed exploit summary This exploit leverages a UnixWare 7.1 privilege model vulnerability, allowing a local user to attach a debugger to a privileged process and escalate privileges. It generates a malicious shared object and sets environment variables to exploit the flaw.

Description

The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Brock Tellier · clocalsco

https://www.exploit-db.com/exploits/19674

View Code ZIP pw:eip

This exploit leverages a UnixWare 7.1 privilege model vulnerability, allowing a local user to attach a debugger to a privileged process and escalate privileges. It generates a malicious shared object and sets environment variables to exploit the flaw.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: UnixWare 7.1

Auth required

Prerequisites: Local access to a UnixWare 7.1 system · A privileged process with matching UID · GDB or similar debugger installed

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1555 - Credentials from Password Stores

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/869

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=94530783815434&w=2

Scores

EPSS 0.0067

EPSS Percentile 47.0%

Details

Status published

Products (4)

sco/unixware 7.0

sco/unixware 7.0.1

sco/unixware 7.1

sco/unixware 7.1.1

Published Apr 11, 2000

Tracked Since Feb 18, 2026