Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0173

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2003-0173
Last Modified 10 Sep 2008 03:18:10
Published 05 May 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2003-0173

Summary

xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges.

Vulnerable Systems

Operating System

  • Sgi Irix 6.5

  • Sgi Irix 6.5.1

  • Sgi Irix 6.5.10

  • Sgi Irix 6.5.10f

  • Sgi Irix 6.5.10m

  • Sgi Irix 6.5.11

  • Sgi Irix 6.5.11f

  • Sgi Irix 6.5.11m

  • Sgi Irix 6.5.12

  • Sgi Irix 6.5.12f

  • Sgi Irix 6.5.12m

  • Sgi Irix 6.5.13

  • Sgi Irix 6.5.13f

  • Sgi Irix 6.5.13m

  • Sgi Irix 6.5.14

  • Sgi Irix 6.5.14f

  • Sgi Irix 6.5.14m

  • Sgi Irix 6.5.15

  • Sgi Irix 6.5.15f

  • Sgi Irix 6.5.15m

  • Sgi Irix 6.5.16

  • Sgi Irix 6.5.16f

  • Sgi Irix 6.5.16m

  • Sgi Irix 6.5.17

  • Sgi Irix 6.5.17f

  • Sgi Irix 6.5.17m

  • Sgi Irix 6.5.18

  • Sgi Irix 6.5.18f

  • Sgi Irix 6.5.18m

  • Sgi Irix 6.5.19

  • Sgi Irix 6.5.19f

  • Sgi Irix 6.5.19m

  • Sgi Irix 6.5.2

  • Sgi Irix 6.5.2f

  • Sgi Irix 6.5.2m

  • Sgi Irix 6.5.3

  • Sgi Irix 6.5.3f

  • Sgi Irix 6.5.3m

  • Sgi Irix 6.5.4

  • Sgi Irix 6.5.4f

  • Sgi Irix 6.5.4m

  • Sgi Irix 6.5.5

  • Sgi Irix 6.5.5f

  • Sgi Irix 6.5.5m

  • Sgi Irix 6.5.6

  • Sgi Irix 6.5.6f

  • Sgi Irix 6.5.6m

  • Sgi Irix 6.5.7

  • Sgi Irix 6.5.7f

  • Sgi Irix 6.5.7m

  • Sgi Irix 6.5.8

  • Sgi Irix 6.5.8f

  • Sgi Irix 6.5.8m

  • Sgi Irix 6.5.9

  • Sgi Irix 6.5.9f

  • Sgi Irix 6.5.9m

Application

  • Xfsdump 2.0.0

  • Xfsdump 2.0.1

  • Xfsdump 2.0.2

  • Xfsdump 2.0.3

  • Xfsdump 2.0.4

  • Xfsdump 2.0.5


References

CERT-VN - VU#111673

DEBIAN - DSA-283

SGI - 20030404-01-P

MANDRAKE - MDKSA-2003:047


Last Updated: 27 May 2016 10:37:48