Vulnerabilities > CVE-2002-0652 - Unspecified vulnerability in SGI Irix

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

sgi

exploit available

NVD

Published: 2002-07-03

Updated: 2016-10-18

Summary

xfsmd for IRIX 6.5 through 6.5.16 allows remote attackers to execute arbitrary code via shell metacharacters that are not properly filtered from several calls to the popen() function, such as export_fs().

Vulnerable Configurations

Part	Description	Count
OS	Sgi SGI Irix 6.5 SGI Irix 6.5.1 SGI Irix 6.5.2 SGI Irix 6.5.3 SGI Irix 6.5.4 SGI Irix 6.5.5 SGI Irix 6.5.6 SGI Irix 6.5.7 SGI Irix 6.5.8 SGI Irix 6.5.9 SGI Irix 6.5.10 SGI Irix 6.5.11 SGI Irix 6.5.12 SGI Irix 6.5.13 SGI Irix 6.5.14 SGI Irix 6.5.15 SGI Irix 6.5.16	17

Exploit-Db

description	SGI IRIX 6.x rpc.xfsmd Remote Command Execution Vulnerability. CVE-2002-0652. Remote exploit for irix platform
id	EDB-ID:21571
last seen	2016-02-02
modified	2002-06-20
published	2002-06-20
reporter	Last Stage of Delirium
source	https://www.exploit-db.com/download/21571/
title	SGI IRIX 6.x rpc.xfsmd Remote Command Execution Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References