inpview in InPerson in SGI IRIX 5.3 through IRIX 6.5.10 allows local users to gain privileges via a symlink attack on the .ilmpAAA temporary file.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Irix | Sgi | 6.5 (including) | 6.5 (including) |
| Irix | Sgi | 6.5.1 (including) | 6.5.1 (including) |
| Irix | Sgi | 6.5.2m (including) | 6.5.2m (including) |
| Irix | Sgi | 6.5.3 (including) | 6.5.3 (including) |
| Irix | Sgi | 6.5.3f (including) | 6.5.3f (including) |
| Irix | Sgi | 6.5.3m (including) | 6.5.3m (including) |
| Irix | Sgi | 6.5.4 (including) | 6.5.4 (including) |
| Irix | Sgi | 6.5.6 (including) | 6.5.6 (including) |
| Irix | Sgi | 6.5.7 (including) | 6.5.7 (including) |
| Irix | Sgi | 6.5.8 (including) | 6.5.8 (including) |
References
- ftp://patches.sgi.com/support/free/security/advisories/20001101-01-I
- http://www.securityfocus.com/bid/1530
- http://www.securityfocus.com/templates/archive.pike?list=1\u0026msg=200008021924.e72JOVs12558%40ix.put.poznan.pl
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5065
- ftp://patches.sgi.com/support/free/security/advisories/20001101-01-I
- http://www.securityfocus.com/bid/1530
- http://www.securityfocus.com/templates/archive.pike?list=1\u0026msg=200008021924.e72JOVs12558%40ix.put.poznan.pl
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5065