Lucene search

[email protected]CVE-1999-1384

HistoryOct 30, 1996 - 5:00 a.m.

CVE-1999-1384

1996-10-3005:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-1999-1384

indigo magic system tour

sgi system tour

irix 5.x

irix 6.3

trojan horse

root privileges

local users.

7.4 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Indigo Magic System Tour in the SGI system tour package (systour) for IRIX 5.x through 6.3 allows local users to gain root privileges via a Trojan horse .exitops program, which is called by the inst command that is executed by the RemoveSystemTour program.

CPENameOperatorVersion
sgi:irixsgi irixeq6.0.1
sgi:irixsgi irixeq5.3
sgi:irixsgi irixle6.3
sgi:irixsgi irixeq6.1
sgi:irixsgi irixeq5.0.1
sgi:irixsgi irixeq5.1.1
sgi:irixsgi irixeq5.0
sgi:irixsgi irixeq5
sgi:irixsgi irixeq5.1
sgi:irixsgi irixeq5.2

CPE	Name	Operator	Version
sgi:irix	sgi irix	eq	6.0.1
sgi:irix	sgi irix	eq	5.3
sgi:irix	sgi irix	le	6.3
sgi:irix	sgi irix	eq	6.1
sgi:irix	sgi irix	eq	5.0.1
sgi:irix	sgi irix	eq	5.1.1
sgi:irix	sgi irix	eq	5.0
sgi:irix	sgi irix	eq	5
sgi:irix	sgi irix	eq	5.1
sgi:irix	sgi irix	eq	5.2

Rows per page:

1-10 of 121

References

ftp://ftp.auscert.org.au/pub/auscert/advisory/AA-96.08.SGI.systour.vul

ftp://patches.sgi.com/support/free/security/advisories/19961101-01-I

marc.info/?l=bugtraq&m=87602167420095&w=2

www.iss.net/security_center/static/7456.php

www.securityfocus.com/bid/470

7.4 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON