EIP-2026-102329

PRE-CVE

SGI IRIX 6.4 - 'rmail' Local Privilege Escalation

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-102329. PoCs published by Yuri Volobuev.

AI-analyzed exploit summary The exploit leverages an environment variable injection vulnerability in the rmail utility on SGI Irix systems. By setting the LOGNAME environment variable to include arbitrary commands, an attacker can execute those commands with the gid mail.

Description

SGI IRIX 6.4 - 'rmail' Local Privilege Escalation

Exploits (1)

exploitdb WORKING POC VERIFIED

by Yuri Volobuev · textlocalirix

https://www.exploit-db.com/exploits/19349

View Code ZIP pw:eip

The exploit leverages an environment variable injection vulnerability in the rmail utility on SGI Irix systems. By setting the LOGNAME environment variable to include arbitrary commands, an attacker can execute those commands with the gid mail.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: SGI Irix rmail utility

No auth needed

Prerequisites: Access to set environment variables for the rmail process

MITRE ATT&CK

T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026