Vulnerability Name:

CVE-1999-0040 (CCN-489)

Assigned:1997-05-01
Published:1997-05-01
Updated:2022-08-17
Summary:Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
CVSS v3 Severity:9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: CCN
Type: SGI Security Advisory 19971101-01-PX
libXt Security Issues

Source: MITRE
Type: CNA
CVE-1999-0040

Source: CCN
Type: Sun Microsystems, Inc. Security Bulletin #00153
Vulnerabilities in libXt

Source: CCN
Type: Hewlett-Packard Company Security Bulletin HPSBUX9704-058
Security Vulnerability in libXt for HP-UX 9.X & 10.X

Source: CCN
Type: CERT Advisory CA-1997-11
Vulnerability in libXt

Source: CCN
Type: OSVDB ID: 948
Multiple Vendor libXt Library Local Overflow

Source: CCN
Type: BID-237
Multiple Vendor libXt library Vulnerability

Source: CCN
Type: BID-334
IRIX -xrm Buffer Overflow Vulnerability

Source: CCN
Type: BID-884
Multiple Vendor LibX11/X11 Toolkit/Athena Widget Library Buffer Overflows Vulnerability

Source: XF
Type: UNKNOWN
libXt-bo(489)

Source: MISC
Type: UNKNOWN
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0040

Vulnerable Configuration:Configuration 1:
  • cpe:/o:sgi:irix:5.3:*:*:*:*:*:*:*
  • OR cpe:/o:sgi:irix:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:sgi:irix:6.1:*:*:*:*:*:*:*
  • OR cpe:/o:sgi:irix:6.4:*:*:*:*:*:*:*
  • OR cpe:/o:sgi:irix:5.0:*:*:*:*:*:*:*
  • OR cpe:/o:sgi:irix:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:sgi:irix:6.3:*:*:*:*:*:*:*
  • OR cpe:/o:sgi:irix:6.2:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:sun:sunos:5.3:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.30:*:*:*:*:*:*:*
  • OR cpe:/o:nec:ews-ux_v:4.2mp:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.10:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:4.1.4:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.01:*:*:*:*:*:*:*
  • OR cpe:/o:sun:solaris:2.4:*:x86:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.00:*:*:*:*:*:*:*
  • OR cpe:/o:sun:solaris:2.5.1:*:x86:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.00:*:*:*:*:*:*:*
  • OR cpe:/o:nec:ews-ux_v:4.2:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.20:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.24:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:5.4:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:5.5:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:5.5.1:*:*:*:*:*:*:*
  • OR cpe:/o:bsdi:bsd_os:2.0.1:*:*:*:*:*:*:*
  • OR cpe:/o:bsdi:bsd_os:2.1:*:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:1.1.5.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:4.2:*:*:*:*:*:*:*
  • OR cpe:/o:nec:asl_ux_4800:64:*:*:*:*:*:*:*
  • OR cpe:/o:sun:solaris:2.5:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:sunos:4.1.3u1:*:*:*:*:*:*:*
  • OR cpe:/o:bsdi:bsd_os:2.0:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.08:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.34:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:4.1.3:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.09:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.16:*:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:2.0:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:3.2:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:4.1:*:*:*:*:*:*:*
  • OR cpe:/o:nec:up-ux_v:4.2mp:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.10:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.01:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:ibm:aix:3.2:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:4.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:4.2:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:bsdos:2.1:*:*:*:*:*:*:*
  • OR cpe:/a:data_general:dg_ux:*:*:*:*:*:*:*:*
  • OR cpe:/o:freebsd:freebsd:*:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.00:*:*:*:*:*:*:*
  • OR cpe:/o:nec:ews-ux_v:*:*:*:*:*:*:*:*
  • OR cpe:/o:nec:up-ux_v:*:*:*:*:*:*:*:*
  • OR cpe:/o:nec:asl_ux_4800:*:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:5.3:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:5.5.1:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.01:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.10:*:*:*:*:*:*:*
  • OR cpe:/o:sun:solaris:2.5:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:solaris:2.5.1:*:x86:*:*:*:*:*
  • OR cpe:/o:sun:solaris:2.4:*:x86:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.20:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:4.1.4:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.01:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:10.24:*:*:*:*:*:*:*
  • OR cpe:/o:compaq:tru64:*:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:4.1.1:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.00:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.03:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.04:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.05:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.06:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.07:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.08:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.09:*:*:*:*:*:*:*
  • OR cpe:/o:hp:hp-ux:9.10:*:*:*:*:*:*:*
  • OR cpe:/o:sun:sunos:4.1.3u1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    sgi irix 5.3
    sgi irix 4.0
    sgi irix 6.1
    sgi irix 6.4
    sgi irix 5.0
    sgi irix 6.0
    sgi irix 6.3
    sgi irix 6.2
    sun sunos 5.3
    hp hp-ux 10.30
    nec ews-ux v 4.2mp
    hp hp-ux 9.10
    sun sunos 4.1.4
    hp hp-ux 10.01
    sun solaris 2.4
    hp hp-ux 10.00
    sun solaris 2.5.1
    hp hp-ux 9.00
    nec ews-ux v 4.2
    hp hp-ux 10.20
    hp hp-ux 10.24
    sun sunos 5.4
    sun sunos 5.5
    sun sunos 5.5.1
    bsdi bsd os 2.0.1
    bsdi bsd os 2.1
    freebsd freebsd 1.1.5.1
    ibm aix 4.2
    nec asl ux 4800 64
    sun solaris 2.5
    sun sunos 4.1.3u1
    bsdi bsd os 2.0
    hp hp-ux 10.08
    hp hp-ux 10.34
    sun sunos 4.1.3
    hp hp-ux 10.09
    hp hp-ux 10.16
    freebsd freebsd 2.0
    ibm aix 3.2
    ibm aix 4.1
    nec up-ux v 4.2mp
    hp hp-ux 10.10
    hp hp-ux 9.01
    ibm aix 3.2
    ibm aix 4.1
    ibm aix 4.2
    windriver bsdos 2.1
    data_general dg ux *
    freebsd freebsd *
    hp hp-ux 10.00
    nec ews-ux v *
    nec up-ux v *
    nec asl ux 4800 *
    sun solaris 2.3
    sun solaris 2.5.1
    hp hp-ux 10.01
    hp hp-ux 10.10
    sun solaris 2.5
    sun solaris 2.5.1
    sun solaris 2.4
    hp hp-ux 10.20
    sun sunos 4.1.4
    hp hp-ux 9.01
    hp hp-ux 10.24
    compaq tru64 *
    sun solaris 1.0
    hp hp-ux 9.00
    hp hp-ux 9.03
    hp hp-ux 9.04
    hp hp-ux 9.05
    hp hp-ux 9.06
    hp hp-ux 9.07
    hp hp-ux 9.08
    hp hp-ux 9.09
    hp hp-ux 9.10
    sun sunos 4.1.3u1