IRIX rpc.mountd read-mostly Export Access Rights Issue

2005-06-01T07:47:12
ID OSVDB:17205
Type osvdb
Reporter OSVDB
Modified 2005-06-01T07:47:12

Description

Vulnerability Description

IRIX contains a flaw that may allow a malicious user to gain excessive access rights for read-mostly exports. It is possible that the flaw may allow unauthorized reading and writing, resulting in a loss of integrity. No further details are available.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, IRIX has released a patch to address this vulnerability.

Short Description

IRIX contains a flaw that may allow a malicious user to gain excessive access rights for read-mostly exports. It is possible that the flaw may allow unauthorized reading and writing, resulting in a loss of integrity. No further details are available.

References:

Vendor Specific Solution URL: ftp://patches.sgi.com/support/free/security/patches/6.5.25/patch5898.tar Vendor Specific Solution URL: ftp://patches.sgi.com/support/free/security/patches/6.5.26/patch5899.tar Vendor Specific Solution URL: ftp://patches.sgi.com/support/free/security/patches/6.5.27/patch5899.tar Secunia Advisory ID:15619 Related OSVDB ID: 17206 Other Advisory URL: ftp://patches.sgi.com/support/free/security/advisories/20050601-01-P.asc ISS X-Force ID: 20910 FrSIRT Advisory: ADV-2005-0702 CVE-2005-0139 CIAC Advisory: p-214 Bugtraq ID: 13889