IRIX Objectserver Vulnerability
BID:1079
Info
IRIX Objectserver Vulnerability
| Bugtraq ID: | 1079 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 29 2000 12:00AM |
| Updated: | Mar 29 2000 12:00AM |
| Credit: | This vulnerability was posted to the Bugtraq mailing list on March 29, 2000 by "Howard M. Kash III" <[email protected]>. It has existed in the wild since at least June of 1997, when an exploit was released by the group "Last Stage of Delirium" |
| Vulnerable: |
SGI IRIX 6.2 SGI IRIX 6.1 SGI IRIX 6.0.1 XFS SGI IRIX 6.0.1 SGI IRIX 6.0 SGI IRIX 5.3 XFS SGI IRIX 5.3 SGI IRIX 5.2 |
| Not Vulnerable: |
SGI IRIX 6.5.4 SGI IRIX 6.5.3 m SGI IRIX 6.5.3 f SGI IRIX 6.5.3 SGI IRIX 6.5.2 m SGI IRIX 6.5.1 SGI IRIX 6.5 SGI IRIX 6.4 SGI IRIX 6.3 |
Discussion
IRIX Objectserver Vulnerability
A vulnerability exists in SGI's Objectserver service. By exploiting a vulnerability in this service, remote attackers can add root privileged accounts to the system being compromised. While a patch was made available, and IRIX 6.2 systems were thought to be fixed, the patch merely prevented the creation of root accounts, and did nothing to prevent the creation of other accounts. This vulnerability has existed in the wild since 1997, and was well publicized.
A vulnerability exists in SGI's Objectserver service. By exploiting a vulnerability in this service, remote attackers can add root privileged accounts to the system being compromised. While a patch was made available, and IRIX 6.2 systems were thought to be fixed, the patch merely prevented the creation of root accounts, and did nothing to prevent the creation of other accounts. This vulnerability has existed in the wild since 1997, and was well publicized.
Exploit / POC
Solution / Fix
IRIX Objectserver Vulnerability
Solution:
Patches are available for this vulnerability at http://support.sgi.com.
SGI IRIX 5.3
SGI IRIX 6.2
Solution:
Patches are available for this vulnerability at http://support.sgi.com.
SGI IRIX 5.3
SGI IRIX 6.2