Vulnerability Details CVE-2002-0174
nsd on SGI IRIX before 6.5.11 allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the nsd.dump file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.5%
CVSS Severity
CVSS v2 Score 7.2
References
- ftp://patches.sgi.com/support/free/security/advisories/20020501-01-I
- http://www.iss.net/security_center/static/8981.php
- http://www.securityfocus.com/bid/4655
- ftp://patches.sgi.com/support/free/security/advisories/20020501-01-I
- http://www.iss.net/security_center/static/8981.php
- http://www.securityfocus.com/bid/4655
Products affected by CVE-2002-0174
-
cpe:2.3:o:sgi:irix:6.5
-
cpe:2.3:o:sgi:irix:6.5.1
-
cpe:2.3:o:sgi:irix:6.5.10
-
cpe:2.3:o:sgi:irix:6.5.2
-
cpe:2.3:o:sgi:irix:6.5.3
-
cpe:2.3:o:sgi:irix:6.5.4
-
cpe:2.3:o:sgi:irix:6.5.5
-
cpe:2.3:o:sgi:irix:6.5.6
-
cpe:2.3:o:sgi:irix:6.5.7
-
cpe:2.3:o:sgi:irix:6.5.8
-
cpe:2.3:o:sgi:irix:6.5.9