CVE-2002-2093

The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to "Output Video", allows attackers to access a console session by running videoout then videoin.

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
ftp://patches.sgi.com/support/free/security/advisories/20020103-01-I	Vendor Advisory
http://www.securityfocus.com/bid/3974
https://exchange.xforce.ibmcloud.com/vulnerabilities/8016
ftp://patches.sgi.com/support/free/security/advisories/20020103-01-I	Vendor Advisory
http://www.securityfocus.com/bid/3974
https://exchange.xforce.ibmcloud.com/vulnerabilities/8016

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:sgi:irix:6.5.10f:::::::*
	cpe:2.3:o:sgi:irix:6.5.10m:::::::*
	cpe:2.3:o:sgi:irix:6.5.11:::::::*
	cpe:2.3:o:sgi:irix:6.5.11f:::::::*
	cpe:2.3:o:sgi:irix:6.5.11m:::::::*
	cpe:2.3:o:sgi:irix:6.5.12:::::::*
	cpe:2.3:o:sgi:irix:6.5.12f:::::::*
	cpe:2.3:o:sgi:irix:6.5.12m:::::::*
	cpe:2.3:o:sgi:irix:6.5.13:::::::*
	cpe:2.3:o:sgi:irix:6.5.13f:::::::*
	cpe:2.3:o:sgi:irix:6.5.13m:::::::*
	cpe:2.3:o:sgi:irix:6.5.14:::::::*
	cpe:2.3:o:sgi:irix:6.5.14f:::::::*
	cpe:2.3:o:sgi:irix:6.5.14m:::::::*

History

20 Nov 2024, 23:42

Type	Values Removed	Values Added
References	~~() ftp://patches.sgi.com/support/free/security/advisories/20020103-01-I - Vendor Advisory~~	() ftp://patches.sgi.com/support/free/security/advisories/20020103-01-I - Vendor Advisory
References	~~() http://www.securityfocus.com/bid/3974 -~~	() http://www.securityfocus.com/bid/3974 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/8016 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/8016 -

Information

Published : 2002-12-31 05:00

Updated : 2024-11-20 23:42

NVD link : CVE-2002-2093

Mitre link : CVE-2002-2093

CVE.ORG link : CVE-2002-2093

JSON object : View

Products Affected

sgi

irix

CWE

NVD-CWE-Other

{"id": "CVE-2002-2093", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2002-12-31T05:00:00.000", "references": [{"url": "ftp://patches.sgi.com/support/free/security/advisories/20020103-01-I", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/3974", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/8016", "source": "cve@mitre.org"}, {"url": "ftp://patches.sgi.com/support/free/security/advisories/20020103-01-I", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/3974", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/8016", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to \"Output Video\", allows attackers to access a console session by running videoout then videoin."}], "lastModified": "2024-11-20T23:42:51.540", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sgi:irix:6.5.10f:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E7D3C74-CDD2-4DFF-A331-007E1669752A"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.10m:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03FA10EA-F6E5-4A89-AC37-40FF6A147528"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCC67401-C85A-4E4E-AE61-85FEBBF4346B"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.11f:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C8E0DF6-D9C2-4DBC-9997-B5BFC6DEC9F9"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.11m:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1E1480B-2183-45AD-B63F-16DEC9BF0398"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C4427AC-07C1-4765-981B-B5D86D698C2D"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.12f:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D08345C-F945-410C-9DCB-8C358178F975"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.12m:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8764BE36-9377-486C-9198-DF79A5A60679"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63EF0CEE-74A9-45C8-8AFD-77815230ACC6"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.13f:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25243FA1-7AF7-41D4-8FAD-A5AB289E120D"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.13m:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94D89730-AA61-4FC9-A6AB-0574CA51EE75"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B24D34C-1F95-45C8-9A57-2D2622ED9019"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.14f:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7B59E7C-B059-41CD-AE33-E9623ADA12BC"}, {"criteria": "cpe:2.3:o:sgi:irix:6.5.14m:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0DF1B657-C910-4BB0-828C-09B6A59D988D"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}