3.3.1

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

sgi

NVD

Published: 1990-10-31

Updated: 2008-09-05

Summary

/usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to read the mail of other users.

Vulnerable Configurations

Part	Description	Count
OS	Sgi SGI Irix 3.3 SGI Irix 3.3.1	2

References

http://www.cert.org/advisories/CA-1990-08.html
http://www.iss.net/security_center/static/3164.php
http://www.securityfocus.com/bid/13