CVE-2005-2925

Опубликовано: 12 окт. 2005

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

runpriv in SGI IRIX allows local users to bypass intended restrictions and execute arbitrary commands via shell metacharacters in a command line for a privileged binary in /usr/sysadm/privbin.

Ссылки

ftp://patches.sgi.com/support/free/security/advisories/20051001-01-P.asc
http://secunia.com/advisories/17131
http://securitytracker.com/id?1015031
http://www.idefense.com/application/poi/display?id=312&type=vulnerabilities
Patch
Vendor Advisory
http://www.osvdb.org/19907
http://www.securityfocus.com/archive/1/427409/100/0/threaded
http://www.securityfocus.com/bid/15055
https://exchange.xforce.ibmcloud.com/vulnerabilities/22561
ftp://patches.sgi.com/support/free/security/advisories/20051001-01-P.asc
http://secunia.com/advisories/17131
http://securitytracker.com/id?1015031
http://www.idefense.com/application/poi/display?id=312&type=vulnerabilities
Patch
Vendor Advisory
http://www.osvdb.org/19907
http://www.securityfocus.com/archive/1/427409/100/0/threaded
http://www.securityfocus.com/bid/15055
https://exchange.xforce.ibmcloud.com/vulnerabilities/22561

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:sgi:irix:6.5.22:*:*:*:*:*:*:*

EPSS

Процентиль: 41%

0.00194

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5gc3-j88p-jmj3

github

почти 4 года назад