CVE-1999-0046

BSD/OS 2.1 / DG/UX 4.0 / Debian 0.93 / Digital UNIX 4.0 B / FreeBSD 2.1.5 / HP-UX 10.34 / IBM AIX 4.1.5 / NetBSD 1.0/1.1 / NeXTstep 4.0 / SGI IRIX 6.3 / SunOS 4.1.4 - 'rlogin' Local Privilege Escalation

Severity Score

10.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Buffer overflow of rlogin program using TERM environmental variable.

*Credits: N/A

CVSS Scores

NISTv2 10.0

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

1996-12-04 First Exploit
1997-02-06 CVE Published
1999-06-07 CVE Reserved
2024-02-09 EPSS Updated
2024-08-01 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CAPEC

References (2)

URL	Tag	Source
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0046	Third Party Advisory

URL	Date	SRC
https://www.exploit-db.com/exploits/19203	1996-12-04

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Bsdi Search vendor "Bsdi"		Bsd Os Search vendor "Bsdi" for product "Bsd Os"				1.1 Search vendor "Bsdi" for product "Bsd Os" and version "1.1"		-		Affected
Bsdi Search vendor "Bsdi"		Bsd Os Search vendor "Bsdi" for product "Bsd Os"				2.0 Search vendor "Bsdi" for product "Bsd Os" and version "2.0"		-		Affected
Bsdi Search vendor "Bsdi"		Bsd Os Search vendor "Bsdi" for product "Bsd Os"				2.0.1 Search vendor "Bsdi" for product "Bsd Os" and version "2.0.1"		-		Affected
Bsdi Search vendor "Bsdi"		Bsd Os Search vendor "Bsdi" for product "Bsd Os"				2.1 Search vendor "Bsdi" for product "Bsd Os" and version "2.1"		-		Affected
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				0.93 Search vendor "Debian" for product "Debian Linux" and version "0.93"		-		Affected
Digital Search vendor "Digital"		Ultrix Search vendor "Digital" for product "Ultrix"				-		-		Affected
Freebsd Search vendor "Freebsd"		Freebsd Search vendor "Freebsd" for product "Freebsd"				1.1.5.1 Search vendor "Freebsd" for product "Freebsd" and version "1.1.5.1"		-		Affected
Freebsd Search vendor "Freebsd"		Freebsd Search vendor "Freebsd" for product "Freebsd"				2.0 Search vendor "Freebsd" for product "Freebsd" and version "2.0"		-		Affected
Freebsd Search vendor "Freebsd"		Freebsd Search vendor "Freebsd" for product "Freebsd"				2.0.5 Search vendor "Freebsd" for product "Freebsd" and version "2.0.5"		-		Affected
Freebsd Search vendor "Freebsd"		Freebsd Search vendor "Freebsd" for product "Freebsd"				2.1.0 Search vendor "Freebsd" for product "Freebsd" and version "2.1.0"		-		Affected
Freebsd Search vendor "Freebsd"		Freebsd Search vendor "Freebsd" for product "Freebsd"				2.1.5 Search vendor "Freebsd" for product "Freebsd" and version "2.1.5"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.00 Search vendor "Hp" for product "Hp-ux" and version "10.00"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.01 Search vendor "Hp" for product "Hp-ux" and version "10.01"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.08 Search vendor "Hp" for product "Hp-ux" and version "10.08"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.09 Search vendor "Hp" for product "Hp-ux" and version "10.09"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.10 Search vendor "Hp" for product "Hp-ux" and version "10.10"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.16 Search vendor "Hp" for product "Hp-ux" and version "10.16"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.20 Search vendor "Hp" for product "Hp-ux" and version "10.20"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.24 Search vendor "Hp" for product "Hp-ux" and version "10.24"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.30 Search vendor "Hp" for product "Hp-ux" and version "10.30"		-		Affected
Hp Search vendor "Hp"		Hp-ux Search vendor "Hp" for product "Hp-ux"				10.34 Search vendor "Hp" for product "Hp-ux" and version "10.34"		-		Affected
Ibm Search vendor "Ibm"		Aix Search vendor "Ibm" for product "Aix"				3.2 Search vendor "Ibm" for product "Aix" and version "3.2"		-		Affected
Ibm Search vendor "Ibm"		Aix Search vendor "Ibm" for product "Aix"				4.1 Search vendor "Ibm" for product "Aix" and version "4.1"		-		Affected
Ibm Search vendor "Ibm"		Aix Search vendor "Ibm" for product "Aix"				4.1.1 Search vendor "Ibm" for product "Aix" and version "4.1.1"		-		Affected
Ibm Search vendor "Ibm"		Aix Search vendor "Ibm" for product "Aix"				4.1.2 Search vendor "Ibm" for product "Aix" and version "4.1.2"		-		Affected
Ibm Search vendor "Ibm"		Aix Search vendor "Ibm" for product "Aix"				4.1.3 Search vendor "Ibm" for product "Aix" and version "4.1.3"		-		Affected
Ibm Search vendor "Ibm"		Aix Search vendor "Ibm" for product "Aix"				4.1.4 Search vendor "Ibm" for product "Aix" and version "4.1.4"		-		Affected
Ibm Search vendor "Ibm"		Aix Search vendor "Ibm" for product "Aix"				4.1.5 Search vendor "Ibm" for product "Aix" and version "4.1.5"		-		Affected
Netbsd Search vendor "Netbsd"		Netbsd Search vendor "Netbsd" for product "Netbsd"				1.0 Search vendor "Netbsd" for product "Netbsd" and version "1.0"		-		Affected
Netbsd Search vendor "Netbsd"		Netbsd Search vendor "Netbsd" for product "Netbsd"				1.1 Search vendor "Netbsd" for product "Netbsd" and version "1.1"		-		Affected
Next Search vendor "Next"		Nextstep Search vendor "Next" for product "Nextstep"				-		-		Affected
Oracle Search vendor "Oracle"		Solaris Search vendor "Oracle" for product "Solaris"				-		-		Affected
Oracle Search vendor "Oracle"		Solaris Search vendor "Oracle" for product "Solaris"				2.5.1 Search vendor "Oracle" for product "Solaris" and version "2.5.1"		-		Affected
Oracle Search vendor "Oracle"		Solaris Search vendor "Oracle" for product "Solaris"				2.6 Search vendor "Oracle" for product "Solaris" and version "2.6"		-		Affected
Oracle Search vendor "Oracle"		Solaris Search vendor "Oracle" for product "Solaris"				7.0 Search vendor "Oracle" for product "Solaris" and version "7.0"		-		Affected
Oracle Search vendor "Oracle"		Solaris Search vendor "Oracle" for product "Solaris"				8 Search vendor "Oracle" for product "Solaris" and version "8"		-		Affected
Sun Search vendor "Sun"		Sunos Search vendor "Sun" for product "Sunos"				4.1.3u1 Search vendor "Sun" for product "Sunos" and version "4.1.3u1"		-		Affected
Sun Search vendor "Sun"		Sunos Search vendor "Sun" for product "Sunos"				4.1.4 Search vendor "Sun" for product "Sunos" and version "4.1.4"		-		Affected
Sun Search vendor "Sun"		Sunos Search vendor "Sun" for product "Sunos"				5.3 Search vendor "Sun" for product "Sunos" and version "5.3"		-		Affected
Sun Search vendor "Sun"		Sunos Search vendor "Sun" for product "Sunos"				5.4 Search vendor "Sun" for product "Sunos" and version "5.4"		-		Affected
Sun Search vendor "Sun"		Sunos Search vendor "Sun" for product "Sunos"				5.5 Search vendor "Sun" for product "Sunos" and version "5.5"		-		Affected
Sun Search vendor "Sun"		Sunos Search vendor "Sun" for product "Sunos"				5.5.1 Search vendor "Sun" for product "Sunos" and version "5.5.1"		-		Affected