Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Irix | Sgi | 5.0 (including) | 5.0 (including) |
Irix | Sgi | 5.0.1 (including) | 5.0.1 (including) |
Irix | Sgi | 5.1 (including) | 5.1 (including) |
Irix | Sgi | 5.1.1 (including) | 5.1.1 (including) |
Irix | Sgi | 5.2 (including) | 5.2 (including) |
Irix | Sgi | 5.3 (including) | 5.3 (including) |
Irix | Sgi | 6.0 (including) | 6.0 (including) |
Irix | Sgi | 6.0.1 (including) | 6.0.1 (including) |
Irix | Sgi | 6.1 (including) | 6.1 (including) |
Irix | Sgi | 6.2 (including) | 6.2 (including) |
Irix | Sgi | 6.3 (including) | 6.3 (including) |