SGI IRIX <= 6.4 inpview Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/381/info The inpview utility, included by SGI in its Irix operating system, contains a vulnerability that will allow any local user to obtain root access. inpview is part of the InPerson dektop video conferencing package...

CVE-2000-0799

inpview in InPerson in SGI IRIX 5.3 through IRIX 6.5.10 allows local users to gain privileges via a symlink attack on the .ilmpAAA temporary file...

CVE-1999-1461

The CVE-1999-1461 issue affects IRIX 5.3–6.5.10 where inpview trusts the PATH env var to locate and execute ttsession. A local user can modify PATH to point to a Trojan horse ttsession, enabling privilege escalation to root. The root cause is PATH-based resolution of ttsession, leading to arbitra...

CVE-1999-1461

inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find and execute the ttsession program, which allows local users to obtain root access by modifying the PATH to point to a Trojan horse ttsession program...

Локальный root в InPerson

No description provided...

InPerson Vulnerabilities

SGI Security Advisory Title: InPerson Vulnerabilities Reference: CAN-2000-0799 Number: 20001101-01-I Date: November 20, 2000 SGI provides this information freely to the SGI user community for its consideration, interpretation, implementation and use. SGI recommends that this information be acted...