CVE-1999-1461

InPerson <6.5.10 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-1461. PoCs published by Yuri Volobuev.

AI-analyzed exploit summary This exploit leverages a path traversal vulnerability in the setuid root utility 'inpview' on SGI Irix systems. By manipulating the PATH environment variable and placing a malicious 'ttsession' script in /tmp, an attacker can execute arbitrary commands as root.

Description

inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find and execute the ttsession program, which allows local users to obtain root access by modifying the PATH to point to a Trojan horse ttsession program.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Yuri Volobuev · textlocalirix
https://www.exploit-db.com/exploits/19304

This exploit leverages a path traversal vulnerability in the setuid root utility 'inpview' on SGI Irix systems. By manipulating the PATH environment variable and placing a malicious 'ttsession' script in /tmp, an attacker can execute arbitrary commands as root.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: SGI Irix inpview (InPerson desktop video conferencing package)
No auth needed
Prerequisites: Local access to the system · inpview utility installed and setuid root
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=87602167420921&w=2
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/381
Patch, Vendor Advisory vendor-advisory x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/20001101-01-I

Scores

EPSS 0.0096
EPSS Percentile 57.0%

Details

Status published
Products (6)
sgi/irix 5.3
sgi/irix 6.1
sgi/irix 6.2
sgi/irix 6.3
sgi/irix 6.4
sgi/irix 6.5.10
Published May 07, 1997
Tracked Since Feb 18, 2026