Vulnerabilities > CVE-2001-0891

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

sgi

cray

NVD

Published: 2002-01-31

Updated: 2017-10-10

Summary

Format string vulnerability in NQS daemon (nqsdaemon) in NQE 3.3.0.16 for CRAY UNICOS and SGI IRIX allows a local user to gain root privileges by using qsub to submit a batch job whose name contains formatting characters.

Vulnerable Configurations

Part	Description	Count
Application	Sgi SGI Nqsdaemon 3.3.0.16	1
OS	Cray Cray Unicos *	1

References

ftp://patches.sgi.com/support/free/security/advisories/20020101-01-I
http://marc.info/?l=bugtraq&m=100695627423924&w=2
http://www.osvdb.org/3275
http://www.securityfocus.com/bid/3590
https://exchange.xforce.ibmcloud.com/vulnerabilities/7618

Vulnerabilities > CVE-2001-0891 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2001-0891"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2001-0891