2 matches found
CVE-2005-2925
runpriv in SGI IRIX allows local users to bypass intended restrictions and execute arbitrary commands via shell metacharacters in a command line for a privileged binary in /usr/sysadm/privbin...
CVE-2005-2925
The CVE-2005-2925 issue concerns SGI IRIX’s runpriv, a setuid-root helper in /usr/sysadm/privbin. The vulnerability arises from a design flaw that permits local attackers to execute arbitrary commands by injecting shell metacharacters into a command line that is otherwise allowed, enabling root p...