Vulnerabilities > CVE-2002-2093 - Information Disclosure vulnerability in SGI O2 Video Session Viewing

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

local

low complexity

sgi

NVD

Published: 2002-12-31

Updated: 2017-12-19

Summary

The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to "Output Video", allows attackers to access a console session by running videoout then videoin.

Vulnerable Configurations

Part	Description	Count
OS	Sgi SGI Irix 6.5.10F SGI Irix 6.5.10M SGI Irix 6.5.11 SGI Irix 6.5.11F SGI Irix 6.5.11M SGI Irix 6.5.12 SGI Irix 6.5.12F SGI Irix 6.5.12M SGI Irix 6.5.13 SGI Irix 6.5.13F SGI Irix 6.5.13M SGI Irix 6.5.14 SGI Irix 6.5.14F SGI Irix 6.5.14M	14

References

ftp://patches.sgi.com/support/free/security/advisories/20020103-01-I
http://www.securityfocus.com/bid/3974
https://exchange.xforce.ibmcloud.com/vulnerabilities/8016