CVE-1999-1485

IRIX 6.5-6.5.2 - Unauthenticated Information Disclosure and Denial of Service via nsd Virtual Filesystem

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-1485. PoCs published by Jefferson Ogata.

AI-analyzed exploit summary This exploit leverages a vulnerability in SGI IRIX 6.5's nsd service, which exports a virtual filesystem via NFS without proper access controls. The PoC mounts the filesystem remotely to access sensitive information like NIS maps and shadow password files.

Description

nsd in IRIX 6.5 through 6.5.2 exports a virtual filesystem on a UDP port, which allows remote attackers to view files and cause a possible denial of service by mounting the nsd virtual file system.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jefferson Ogata · cremoteirix

https://www.exploit-db.com/exploits/19316

View Code ZIP pw:eip

This exploit leverages a vulnerability in SGI IRIX 6.5's nsd service, which exports a virtual filesystem via NFS without proper access controls. The PoC mounts the filesystem remotely to access sensitive information like NIS maps and shadow password files.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: SGI IRIX 6.5.x (nsd service)

No auth needed

Prerequisites: Network access to the target system · NFS port (typically 1024-1029) open and accessible

MITRE ATT&CK