CVE Vulnerabilities

CVE-1999-1384

Published: Oct 30, 1996 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Indigo Magic System Tour in the SGI system tour package (systour) for IRIX 5.x through 6.3 allows local users to gain root privileges via a Trojan horse .exitops program, which is called by the inst command that is executed by the RemoveSystemTour program.

Affected Software

Name Vendor Start Version End Version
Irix Sgi 5 5
Irix Sgi 5.0 5.0
Irix Sgi 5.0.1 5.0.1
Irix Sgi 5.1 5.1
Irix Sgi 5.1.1 5.1.1
Irix Sgi 5.2 5.2
Irix Sgi 5.3 5.3
Irix Sgi 5.3 5.3
Irix Sgi 6.0 6.0
Irix Sgi 6.0.1 6.0.1
Irix Sgi 6.0.1 6.0.1
Irix Sgi 6.1 6.1
Irix Sgi 6.2 6.2
Irix Sgi * 6.3

References