Back

CVE-1999-1232

Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program.

Published: May 16, 1997 Modified: Apr 16, 2026

CVSS Metrics

Affected Products (1)

Vendor	Product	Version
sgi	irix	6.2

GitHub Security Advisory GHSA-3wf6-gcrx-pm3g

Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to...

References (6)

http://marc.info/?l=bugtraq&m=87602167420994&w=2
http://www.osvdb.org/8559
https://exchange.xforce.ibmcloud.com/vulnerabilities/3316
http://marc.info/?l=bugtraq&m=87602167420994&w=2
http://www.osvdb.org/8559
https://exchange.xforce.ibmcloud.com/vulnerabilities/3316

Risk Scores

CVSS Score 7.2 / 10

EPSS Score 0.10%

Top 73% most likely to be exploited

Threat Score 28.8 / 100

Data Sources

NVD EPSS GitHub