CVE-1999-1232

SGI IRIX 6.2 - Untrusted Search Path Command Execution via PATH Environment Variable

Title source: llm
STIX 2.1

Description

Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/3316
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=87602167420994&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/8559

Scores

EPSS 0.0010
EPSS Percentile 26.3%

Details

Status published
Products (1)
sgi/irix 6.2
Published May 16, 1997
Tracked Since Feb 18, 2026