CVE-1999-0313 in IRIXinfo

Summary

by MITRE

disk_bandwidth on SGI IRIX 6.4 S2MP for Origin/Onyx2 allows local users to gain root access using relative pathnames.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Analysis

by VulDB Data Team • 04/17/2026

The vulnerability described in CVE-1999-0313 represents a critical privilege escalation flaw within the SGI IRIX 6.4 S2MP operating system environment. This issue specifically affects systems running SGI IRIX 6.4 with the S2MP (Symmetric Multi-Processing) kernel extensions on Origin and Onyx2 hardware platforms. The vulnerability stems from improper handling of relative pathnames within the disk_bandwidth utility, which is designed to monitor and manage disk I/O bandwidth usage across multiple processors in a symmetric multiprocessing environment. Local users who can execute this utility with elevated privileges or who have access to the system can exploit this weakness to escalate their privileges to root level access. The flaw operates through a path traversal mechanism where the disk_bandwidth utility fails to properly validate or resolve relative pathnames, allowing malicious users to manipulate file access patterns and gain unauthorized system control.

The technical implementation of this vulnerability involves a classic path traversal attack vector that leverages the system's failure to properly sanitize pathname inputs. When the disk_bandwidth utility processes user-supplied pathnames, it does not adequately verify whether these paths are absolute or relative, nor does it properly validate the target file locations. This allows attackers to craft malicious relative paths that can manipulate the utility's behavior to access or modify system-critical files. The vulnerability specifically relates to CWE-22, which describes improper limitation of a pathname to a restricted directory, commonly known as path traversal or directory traversal attacks. The flaw enables an attacker to bypass normal access controls and execute arbitrary code with elevated privileges, potentially leading to complete system compromise.

The operational impact of this vulnerability extends beyond simple privilege escalation to encompass broader system security implications. Attackers who successfully exploit this weakness can gain root access to the entire system, enabling them to modify critical system files, install backdoors, monitor network traffic, and potentially access all user data stored on the system. The vulnerability affects systems running SGI IRIX 6.4 S2MP specifically, which were commonly used in high-performance computing environments for scientific and engineering applications. This makes the impact particularly severe for organizations relying on these systems for critical computational workloads, as the compromise of such systems can result in significant data loss and operational disruption. The attack requires only local system access, making it relatively easy to exploit in environments where attackers have already established a foothold through other means.

Mitigation strategies for CVE-1999-0313 should focus on both immediate system hardening and long-term architectural improvements. The most effective immediate solution involves applying the vendor-provided security patches that properly validate and sanitize pathname inputs within the disk_bandwidth utility. System administrators should also implement strict file access controls and ensure that only authorized users can execute privileged utilities. The principle of least privilege should be enforced, limiting local user access to system-critical utilities where possible. Additionally, monitoring and logging of all executions of the disk_bandwidth utility should be implemented to detect potential exploitation attempts. From an ATT&CK framework perspective, this vulnerability aligns with techniques such as privilege escalation through path manipulation and the use of system utilities for malicious purposes. Organizations should also consider implementing automated patch management processes to ensure timely remediation of similar vulnerabilities across their infrastructure. The vulnerability demonstrates the importance of input validation and proper path resolution in system utilities, particularly those running with elevated privileges in multi-user environments.

Disclosure

07/01/1998

Moderation

accepted

Entry

VDB-14165

CPE

ready

EPSS

0.00352

KEV

no

Activities

very low

Sources

Interested in the pricing of exploits?

See the underground prices here!