CVE-2002-1516

Severity

46%

Complexity

39%

Confidentiality

106%

rpcbind in SGI IRIX, when using the -w command line switch, allows local users to overwrite arbitrary files via a symlink attack.

rpcbind in SGI IRIX, when using the -w command line switch, allows local users to overwrite arbitrary files via a symlink attack.

CVSS 2.0 Base Score 4.6. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:P/I:P/A:P).

Overview

First reported 21 years ago

2003-04-02 05:00:00

Last updated 16 years ago

2008-09-10 19:14:00

Affected Software

SGI IRIX 6.5

6.5

SGI IRIX 6.5.1

6.5.1

SGI IRIX 6.5.2

6.5.2

SGI IRIX 6.5.3

6.5.3

SGI IRIX 6.5.4

6.5.4

SGI IRIX 6.5.5

6.5.5

SGI IRIX 6.5.6

6.5.6

SGI IRIX 6.5.7

6.5.7

SGI IRIX 6.5.8

6.5.8

SGI IRIX 6.5.9

6.5.9

SGI IRIX 6.5.10

6.5.10

SGI IRIX 6.5.11

6.5.11

SGI IRIX 6.5.12

6.5.12

SGI IRIX 6.5.13

6.5.13

SGI IRIX 6.5.13m

6.5.13m

SGI IRIX 6.5.14

6.5.14

SGI IRIX 6.5.14m

6.5.14m

SGI IRIX 6.5.15

6.5.15

SGI IRIX 6.5.15m

6.5.15m

SGI IRIX 6.5.16

6.5.16

SGI IRIX 6.5.16m

6.5.16m

SGI IRIX 6.5.17

6.5.17

SGI IRIX 6.5.17m

6.5.17m

References

20020903-01-P

N-004

Patch, Vendor Advisory

irix-rpcbind-w-symlink(10272)

Patch, Vendor Advisory

5889

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.