CVE-2002-0357

Unknown vulnerability in rpc.passwd in the nfs.sw.nis subsystem of SGI IRIX 6.5.15 and earlier allows local users to gain root privileges.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
ftp://patches.sgi.com/support/free/security/advisories/20020601-01-P	Patch Vendor Advisory
http://www.ciac.org/ciac/bulletins/m-087.shtml
http://www.iss.net/security_center/static/9261.php	Vendor Advisory
http://www.kb.cert.org/vuls/id/430419	US Government Resource
http://www.osvdb.org/834
http://www.securityfocus.com/bid/4939
ftp://patches.sgi.com/support/free/security/advisories/20020601-01-P	Patch Vendor Advisory
http://www.ciac.org/ciac/bulletins/m-087.shtml
http://www.iss.net/security_center/static/9261.php	Vendor Advisory
http://www.kb.cert.org/vuls/id/430419	US Government Resource
http://www.osvdb.org/834
http://www.securityfocus.com/bid/4939

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sgi:irix:6.5:::::::*
	cpe:2.3:o:sgi:irix:6.5.1:::::::*
	cpe:2.3:o:sgi:irix:6.5.2:::::::*
	cpe:2.3:o:sgi:irix:6.5.2f:::::::*
	cpe:2.3:o:sgi:irix:6.5.2m:::::::*
	cpe:2.3:o:sgi:irix:6.5.3:::::::*
	cpe:2.3:o:sgi:irix:6.5.3f:::::::*
	cpe:2.3:o:sgi:irix:6.5.3m:::::::*
	cpe:2.3:o:sgi:irix:6.5.4:::::::*
	cpe:2.3:o:sgi:irix:6.5.4f:::::::*
	cpe:2.3:o:sgi:irix:6.5.4m:::::::*
	cpe:2.3:o:sgi:irix:6.5.5:::::::*
	cpe:2.3:o:sgi:irix:6.5.5f:::::::*
	cpe:2.3:o:sgi:irix:6.5.5m:::::::*
	cpe:2.3:o:sgi:irix:6.5.6:::::::*
	cpe:2.3:o:sgi:irix:6.5.6f:::::::*
	cpe:2.3:o:sgi:irix:6.5.6m:::::::*
	cpe:2.3:o:sgi:irix:6.5.7:::::::*
	cpe:2.3:o:sgi:irix:6.5.7f:::::::*
	cpe:2.3:o:sgi:irix:6.5.7m:::::::*
	cpe:2.3:o:sgi:irix:6.5.8:::::::*
	cpe:2.3:o:sgi:irix:6.5.8f:::::::*
	cpe:2.3:o:sgi:irix:6.5.8m:::::::*
	cpe:2.3:o:sgi:irix:6.5.9:::::::*
	cpe:2.3:o:sgi:irix:6.5.9f:::::::*
	cpe:2.3:o:sgi:irix:6.5.9m:::::::*
	cpe:2.3:o:sgi:irix:6.5.10:::::::*
	cpe:2.3:o:sgi:irix:6.5.10f:::::::*
	cpe:2.3:o:sgi:irix:6.5.10m:::::::*
	cpe:2.3:o:sgi:irix:6.5.11:::::::*
	cpe:2.3:o:sgi:irix:6.5.11f:::::::*
	cpe:2.3:o:sgi:irix:6.5.11m:::::::*
	cpe:2.3:o:sgi:irix:6.5.12:::::::*
	cpe:2.3:o:sgi:irix:6.5.12f:::::::*
	cpe:2.3:o:sgi:irix:6.5.12m:::::::*
	cpe:2.3:o:sgi:irix:6.5.13:::::::*
	cpe:2.3:o:sgi:irix:6.5.13f:::::::*
	cpe:2.3:o:sgi:irix:6.5.13m:::::::*
	cpe:2.3:o:sgi:irix:6.5.14:::::::*
	cpe:2.3:o:sgi:irix:6.5.14f:::::::*
	cpe:2.3:o:sgi:irix:6.5.14m:::::::*
	cpe:2.3:o:sgi:irix:6.5.15:::::::*
	cpe:2.3:o:sgi:irix:6.5.15f:::::::*
	cpe:2.3:o:sgi:irix:6.5.15m:::::::*

History

20 Nov 2024, 23:38

Type	Values Removed	Values Added
References	~~() ftp://patches.sgi.com/support/free/security/advisories/20020601-01-P - Patch, Vendor Advisory~~	() ftp://patches.sgi.com/support/free/security/advisories/20020601-01-P - Patch, Vendor Advisory
References	~~() http://www.ciac.org/ciac/bulletins/m-087.shtml -~~	() http://www.ciac.org/ciac/bulletins/m-087.shtml -
References	~~() http://www.iss.net/security_center/static/9261.php - Vendor Advisory~~	() http://www.iss.net/security_center/static/9261.php - Vendor Advisory
References	~~() http://www.kb.cert.org/vuls/id/430419 - US Government Resource~~	() http://www.kb.cert.org/vuls/id/430419 - US Government Resource
References	~~() http://www.osvdb.org/834 -~~	() http://www.osvdb.org/834 -
References	~~() http://www.securityfocus.com/bid/4939 -~~	() http://www.securityfocus.com/bid/4939 -

Information

Published : 2002-06-18 04:00

Updated : 2024-11-20 23:38

NVD link : CVE-2002-0357

Mitre link : CVE-2002-0357

CVE.ORG link : CVE-2002-0357

JSON object : View

Products Affected

sgi

irix

CWE

NVD-CWE-Other

7.2 /10