Lucene search
+L

55 matches found

cve
cve
added 2003/04/15 4:0 a.m.63 views

CVE-2003-0173

CVE-2003-0173 affects xfsdump and its helper xfsdq. When quotas are enabled, xfsdump saves quota information by invoking xfsdq and creates the output file at the root of the target filesystem in an unsafe manner, allowing local users to gain root privileges. Debian’s DSA-283-1 documents the issue...

7.2CVSS5.9AI score0.00489EPSS
Exploits0References4Affected Software2
cvelist
cvelist
added 2003/04/15 4:0 a.m.18 views

CVE-2003-0173

xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges...

6AI score0.00489EPSS
Exploits0References4
debiancve
debiancve
added 2003/04/15 4:0 a.m.38 views

CVE-2003-0173

xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges...

7.2CVSS4.9AI score0.00489EPSS
Exploits0
securityvulns
securityvulns
added 2003/04/12 12:0 a.m.33 views

Symbolic links in xfsdump

File is created insecurely in the root of given file system...

1.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2003/04/12 12:0 a.m.48 views

[SECURITY] [DSA 283-1] New xfsdump packages fix insecure file creation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 283-1 [email protected] http://www.debian.org/security/ Martin Schulze April 11th, 2003 http://www.debian.org/security/faq -...

7.2CVSS0.1AI score0.00489EPSS
Exploits0
debian
debian
added 2003/04/11 6:16 a.m.31 views

[SECURITY] [DSA 283-1] New xfsdump packages fix insecure file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 283-1 [email protected] http://www.debian.org/security/ Martin Schulze April 11th, 2003 http://www.debian.org/security/faq -...

7.2CVSS0.1AI score0.00489EPSS
Exploits0
debian
debian
added 2003/04/11 6:16 a.m.22 views

[SECURITY] [DSA 283-1] New xfsdump packages fix insecure file creation

-------------------------------------------------------------------------- Debian Security Advisory DSA 283-1 [email protected] http://www.debian.org/security/ Martin Schulze April 11th, 2003 http://www.debian.org/security/faq -...

7.2CVSS6AI score0.00489EPSS
Exploits0
securityvulns
securityvulns
added 2003/04/11 12:0 a.m.34 views

xfsdump creates files insecurely on IRIX

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title : xfsdump creates files insecurely Number : 20030404-01-P Date : April 10, 2003 Reference: CVE CAN-2003-0173 Reference: SGI BUG 885222 Fixed in : IRIX 6.5.20 when available or patches 5059 and 5060 - ----------------------- - --- Issu...

7.2CVSS6.4AI score0.00489EPSS
Exploits0
osv
osv
added 2003/04/11 12:0 a.m.21 views

DSA-283 xfsdump - insecure file creation

Bulletin has no description...

7.2CVSS6.1AI score0.00489EPSS
Exploits0
cert
cert
added 2003/04/10 12:0 a.m.25 views

SGI IRIX "xfsdump" creates quota information files insecurely

Overview A vulnerability exists in xfsdump on SGI IRIX. Exploitation of this vulnerability may allow a local attacker to gain root privileges. Because other operating systems ship with xfsdump, vendors other than SGI may be affected. Description From the xfsdump man page:xfsdump backs up files an...

7.2CVSS5.6AI score0.00489EPSS
Exploits0References2
cve
cve
added 2001/09/12 4:0 a.m.54 views

CVE-1999-1398

The CVE-1999-1398 vulnerability affects the xfsdump utility on SGI IRIX and could allow local users to gain root privileges via the bck.log file, potentially through a symlink attack. The provided documents do not specify exact affected IRIX versions, exploit details, or a patch/remediation. Expl...

6.2CVSS7.1AI score0.008EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2001/09/12 4:0 a.m.18 views

CVE-1999-1398

Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log log file, possibly via a symlink attack...

6.4AI score0.008EPSS
Exploits1References3
nvd
nvd
added 1997/05/07 4:0 a.m.14 views

CVE-1999-1398

Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log log file, possibly via a symlink attack...

6.2CVSS0.008EPSS
Exploits1References3
exploitpack
exploitpack
added 1997/05/07 12:0 a.m.15 views

SGI IRIX 6.4 - xfsdump Local Privilege Escalation

SGI IRIX 6.4 - xfsdump Local Privilege Escalation source: https://www.securityfocus.com/bid/472/info The xfsdump program shipped with Irix 5.x and 6.x from SGI contains a vulnerability which could lead to root compromise. By creating a log file in /usr/tmp called bck.log, a user could create a...

1AI score
Exploits0
exploitdb
exploitdb
added 1997/05/07 12:0 a.m.24 views

SGI IRIX 6.4 - 'xfsdump' Local Privilege Escalation

source: https://www.securityfocus.com/bid/472/info The xfsdump program shipped with Irix 5.x and 6.x from SGI contains a vulnerability which could lead to root compromise. By creating a log file in /usr/tmp called bck.log, a user could create a symbolic link from this file to any file they wish t...

7.4AI score
Exploits0
Rows per page
Query Builder