Vulnerabilities > CVE-2005-2925 - Local Privilege Escalation vulnerability in SGI Irix 6.5.22
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
runpriv in SGI IRIX allows local users to bypass intended restrictions and execute arbitrary commands via shell metacharacters in a command line for a privileged binary in /usr/sysadm/privbin.
Exploit-Db
description | SGI IRIX <= 6.5.28 (runpriv) Design Error Vulnerability. CVE-2005-2925. Local exploit for irix platform |
id | EDB-ID:1577 |
last seen | 2016-01-31 |
modified | 2005-10-10 |
published | 2005-10-10 |
reporter | N/A |
source | https://www.exploit-db.com/download/1577/ |
title | SGI IRIX <= 6.5.28 - runpriv Design Error Vulnerability |
Packetstorm
data source | https://packetstormsecurity.com/files/download/40574/10.10.05.txt |
id | PACKETSTORM:40574 |
last seen | 2016-12-05 |
published | 2005-10-11 |
reporter | iDefense Labs |
source | https://packetstormsecurity.com/files/40574/iDEFENSE-Security-Advisory-2005-10-10.t.html |
title | iDEFENSE Security Advisory 2005-10-10.t |
References
- ftp://patches.sgi.com/support/free/security/advisories/20051001-01-P.asc
- http://secunia.com/advisories/17131
- http://securitytracker.com/id?1015031
- http://www.idefense.com/application/poi/display?id=312&type=vulnerabilities
- http://www.osvdb.org/19907
- http://www.securityfocus.com/archive/1/427409/100/0/threaded
- http://www.securityfocus.com/bid/15055
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22561