CVE-1999-1468 Information

Description

rdist in various UNIX systems uses popen to execute sendmail which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.

Reference

http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-01.html http://www.cert.org/advisories/CA-91.20.rdist.vulnerability http://www.iss.net/security_center/static/7160.php http://www.osvdb.org/8106 http://www.securityfocus.com/bid/31