Lucene search

[email protected]CVE-2000-0798

HistoryOct 20, 2000 - 4:00 a.m.

CVE-2000-0798

2000-10-2004:00:00

[email protected]

web.nvd.nist.gov

cve-2000-0798

irix 6.x

truncate function

privilege check

xfs file system.

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.5%

JSON

The truncate function in IRIX 6.x does not properly check for privileges when the file is in the xfs file system, which allows local users to delete the contents of arbitrary files.

Affected configurations

NVD

Node

sgiirixMatch6.2

sgiirixMatch6.3

sgiirixMatch6.4

CPENameOperatorVersion
sgi:irixsgi irixeq6.2
sgi:irixsgi irixeq6.3
sgi:irixsgi irixeq6.4

CPE	Name	Operator	Version
sgi:irix	sgi irix	eq	6.2
sgi:irix	sgi irix	eq	6.3
sgi:irix	sgi irix	eq	6.4

References

www.osvdb.org/8569

www.securityfocus.com/bid/1540

www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558%40ix.put.poznan.pl

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.8 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.5%

JSON

Related for CVE-2000-0798

cvelist1 nvd1