Vulnerability Details CVE-1999-1410
addnetpr in IRIX 5.3 and 6.2 allows local users to overwrite arbitrary files and possibly gain root privileges via a symlink attack on the printers temporary file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.2%
CVSS Severity
CVSS v2 Score 6.2
References
- ftp://patches.sgi.com/support/free/security/advisories/19961203-02-PX
- http://marc.info/?l=bugtraq&m=87602167420927&w=2
- http://www.securityfocus.com/bid/330
- ftp://patches.sgi.com/support/free/security/advisories/19961203-02-PX
- http://marc.info/?l=bugtraq&m=87602167420927&w=2
- http://www.securityfocus.com/bid/330
Products affected by CVE-1999-1410
-
cpe:2.3:o:sgi:irix:5.0
-
cpe:2.3:o:sgi:irix:5.0.1
-
cpe:2.3:o:sgi:irix:5.1
-
cpe:2.3:o:sgi:irix:5.1.1
-
cpe:2.3:o:sgi:irix:5.2
-
cpe:2.3:o:sgi:irix:5.3
-
cpe:2.3:o:sgi:irix:6.0.1
-
cpe:2.3:o:sgi:irix:6.1
-
cpe:2.3:o:sgi:irix:6.2