Unrated severityNVD Advisory· Published Oct 13, 1995· Updated Apr 16, 2026

CVE-1999-0073

Description

Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.

Affected products

Digital Project/Osf 15 versions
cpe:2.3:o:digital:osf_1:1.2:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:digital:osf_1:1.2:*:*:*:*:*:*:*
- cpe:2.3:o:digital:osf_1:1.3:*:*:*:*:*:*:*
- cpe:2.3:o:digital:osf_1:2.0:*:*:*:*:*:*:*
- cpe:2.3:o:digital:osf_1:3.0:*:*:*:*:*:*:*
- cpe:2.3:o:digital:osf_1:3.2:*:*:*:*:*:*:*
Digital Project/Unix2 versions
cpe:2.3:o:digital:unix:3.2g:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:digital:unix:3.2g:*:*:*:*:*:*:*
- cpe:2.3:o:digital:unix:4.0:*:*:*:*:*:*:*
Sgi/Irix13 versions
cpe:2.3:o:sgi:irix:5.0:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:o:sgi:irix:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:5.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:5.1:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:5.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:5.2:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:5.3:*:xfs:*:*:*:*:*
- cpe:2.3:o:sgi:irix:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:6.0.1:*:xfs:*:*:*:*:*
- cpe:2.3:o:sgi:irix:6.1:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:6.2:*:*:*:*:*:*:*
- cpe:2.3:o:sgi:irix:6.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000