CVE-1999-1491

Red Hat 2.1 - Command Injection

Title source: llm

Description

abuse.console in Red Hat 2.1 uses relative pathnames to find and execute the undrv program, which allows local users to execute arbitrary commands via a path that points to a Trojan horse program.

Exploits (1)

exploitdb WORKING POC VERIFIED

by David J Meltzer · bashlocallinux

https://www.exploit-db.com/exploits/19279

View Code ZIP pw:eip

References (2)

[Mailing List] http://marc.info/?l=bugtraq&m=87602167418994&w=2

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/354

Scores

EPSS 0.0056

EPSS Percentile 68.4%

Details

Status published

Products (1)

redhat/linux 2.1

Published Feb 02, 1996

Tracked Since Feb 18, 2026