Lucene search

K
cve[email protected]CVE-2005-0113
HistoryJan 14, 2005 - 5:00 a.m.

CVE-2005-0113

2005-01-1405:00:00
NVD-CWE-Other
web.nvd.nist.gov
23
sgi
irix
inpview
local users
arbitrary commands
security vulnerability

8 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

23.6%

inpview in SGI IRIX allows local users to execute arbitrary commands via the SUN_TTSESSION_CMD environment variable, which is executed by inpview without dropping privileges.

CPENameOperatorVersion
sgi:irixsgi irixeq6.5

8 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

23.6%