CVE-1999-1554
First published: Wed Oct 31 1990(Updated: )
/usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to read the mail of other users.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SGI IRIX | =3.3.1 | |
| SGI IRIX | =3.3 | |
| =3.3 | ||
| =3.3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-1999-1554?
CVE-1999-1554 is considered a high severity vulnerability due to its potential to allow local users to access other users' mail.
How do I fix CVE-1999-1554?
To fix CVE-1999-1554, it is recommended to apply the necessary patches provided by SGI or upgrade to a secure version of IRIX.
Who is affected by CVE-1999-1554?
CVE-1999-1554 affects users of SGI IRIX versions 3.3 and 3.3.1.
What type of vulnerability is CVE-1999-1554?
CVE-1999-1554 is a local privilege escalation vulnerability.
Can CVE-1999-1554 be exploited remotely?
No, CVE-1999-1554 can only be exploited by local users on the affected SGI IRIX systems.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/remedy
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/softwarecombine
- agent/event
- agent/tags
- agent/source
- vendor/sgi
- canonical/sgi irix
- version/sgi irix/3.3.1
- version/sgi irix/3.3