Lucene search

[email protected]CVE-2005-0113

HistoryJan 19, 2005 - 5:00 a.m.

CVE-2005-0113

2005-01-1905:00:00

[email protected]

web.nvd.nist.gov

sgi

irix

inpview

local users

arbitrary commands

security vulnerability

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.9%

JSON

inpview in SGI IRIX allows local users to execute arbitrary commands via the SUN_TTSESSION_CMD environment variable, which is executed by inpview without dropping privileges.

Affected configurations

NVD

Node

sgiirixMatch6.5

CPENameOperatorVersion
sgi:irixsgi irixeq6.5

CPE	Name	Operator	Version
sgi:irix	sgi irix	eq	6.5

References

secunia.com/advisories/13858

securitytracker.com/id?1012894

www.idefense.com/application/poi/display?id=182&type=vulnerabilities

www.osvdb.org/12915

www.securityfocus.com/bid/12259

exchange.xforce.ibmcloud.com/vulnerabilities/18894

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.9%

JSON

Related for CVE-2005-0113

cvelist1 nvd1