CVE-1999-1022 Information

Description

serial_ports administrative program in IRIX 4.x and 5.x trusts the user’s PATH environmental variable to find and execute the ls program which allows local users to gain root privileges via a Trojan horse ls program.

Reference

http://www.securityfocus.com/archive/1/930 http://www.securityfocus.com/bid/464 https://exchange.xforce.ibmcloud.com/vulnerabilities/2111