← CVECheck
HomeVulnerabilities

CVE-1999-1022 — MEDIUM severity vulnerability (serial_ports administrative program in IRIX 4.x and 5.x trus)

serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls program, which allows local users to gain root privileges via a Trojan horse ls program.

CVE IDCVE-1999-1022
SeverityMEDIUM
CVSS score6.2
CVSS vectorAV:L/AC:H/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published1994-10-02
Last modified2026-04-16
Descriptionserial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls program, which allows local users to gain root privileges via a Trojan horse ls program.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →