CVE-1999-1243

SGI Desktop Permissions Tool <6.0.1 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-1243. PoCs published by Larry Glaze.

AI-analyzed exploit summary The exploit leverages a race condition in the IRIX permissions tool, allowing local users to modify file permissions without proper authentication by double-clicking 'Apply' before the password prompt appears.

Description

SGI Desktop Permissions Tool in IRIX 6.0.1 and earlier allows local users to modify permissions for arbitrary files and gain privileges.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Larry Glaze · textlocalirix
https://www.exploit-db.com/exploits/20263

The exploit leverages a race condition in the IRIX permissions tool, allowing local users to modify file permissions without proper authentication by double-clicking 'Apply' before the password prompt appears.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: IRIX /usr/lib/desktop/permissions tool
No auth needed
Prerequisites: Local access to an IRIX system with the vulnerable permissions tool
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Patch, Vendor Advisory third-party-advisory government-resource x_refsource_ciac
http://ciac.llnl.gov/ciac/bulletins/f-16.shtml
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/2113
Patch, Vendor Advisory vendor-advisory x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/19950301-01-P373

Scores

EPSS 0.0061
EPSS Percentile 44.9%

Details

Status published
Products (3)
sgi/irix 5.2
sgi/irix 6.0
sgi/irix < 6.0.1
Published Mar 03, 1995
Tracked Since Feb 18, 2026