CVE-1999-1117
IBM AIX 4.1-4.2 - Arbitrary File Read via lquerypv -h Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-1999-1117. PoCs published by Aleph1.
AI-analyzed exploit summary The exploit leverages a vulnerability in the AIX `lquerypv` command, allowing arbitrary file reads via the `-h` flag. This results in an information leak by displaying file contents in hex format.
Description
lquerypv in AIX 4.1 and 4.2 allows local users to read arbitrary files by specifying the file in the -h command line parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Aleph1 · textlocalaix
https://www.exploit-db.com/exploits/19345
The exploit leverages a vulnerability in the AIX `lquerypv` command, allowing arbitrary file reads via the `-h` flag. This results in an information leak by displaying file contents in hex format.
Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
IBM AIX (version unspecified)
No auth needed
Prerequisites:
Access to the `lquerypv` command on a vulnerable AIX system
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (6)
Core 6
Core References
Patch, Vendor Advisory third-party-advisory
government-resource
x_refsource_ciac
http://ciac.llnl.gov/ciac/bulletins/h-13.shtml
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=87602167420196&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/1752
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/455
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=87602167420195&w=2
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&w=2&r=1&s=lquerypv&q=b
Scores
EPSS
0.0075
EPSS Percentile
50.3%
Details
Status
published
Products (2)
ibm/aix
4.1
ibm/aix
4.2
Published
Dec 31, 1999
Tracked Since
Feb 18, 2026