CVE-1999-1501

Description

(1) ipxchk and (2) ipxlink in SGI OS2 IRIX 6.3 does not properly clear the IFS environmental variable before executing system calls, which allows local users to execute arbitrary commands.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

References

• http://marc.info/?l=bugtraq&m=89217373930054&w=2
• http://www.securityfocus.com/bid/70
  PatchVendor Advisory
• http://www.securityfocus.com/bid/71
  PatchVendor Advisory
• http://marc.info/?l=bugtraq&m=89217373930054&w=2
• http://www.securityfocus.com/bid/70
  PatchVendor Advisory
• http://www.securityfocus.com/bid/71
  PatchVendor Advisory