IRIX Performance Copilot Information Disclosure Vulnerability
BID:1106
Info
IRIX Performance Copilot Information Disclosure Vulnerability
| Bugtraq ID: | 1106 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 12 2000 12:00AM |
| Updated: | Apr 12 2000 12:00AM |
| Credit: | This vulnerability was posted to the Bugtraq mailing list by "Marcelo Magnasco" <[email protected]> on April 12, 2000. |
| Vulnerable: |
SGI IRIX 6.5.6 SGI IRIX 6.5.4 SGI IRIX 6.5.3 m SGI IRIX 6.5.3 f SGI IRIX 6.5.3 SGI IRIX 6.4 SGI IRIX 6.3 SGI IRIX 6.2 |
| Not Vulnerable: | |
Discussion
IRIX Performance Copilot Information Disclosure Vulnerability
Vulnerabilities exist in the Performance Copilot package, as supplied as part of IRIX 6.5. By default, IRIX will install the pmcd daemon, which is installed in /usr/etc. By default, no ACL's are present to limit access to this program. It listens on port 4321.
Performance Copilot exposes a large quantity of information. From the post to Bugtraq:
% pminfo -f -h sgi.victim.com filesys.mountdir
lists all disks and their mount points, for instance.
% pmem -h sgi.victim.com
will return something looking much like a ps -efl: all processes with
their owners and long argument lists.
This BID entry formerly contained information about a denial of service vulnerability. This information has been moved to BID 4642.
Vulnerabilities exist in the Performance Copilot package, as supplied as part of IRIX 6.5. By default, IRIX will install the pmcd daemon, which is installed in /usr/etc. By default, no ACL's are present to limit access to this program. It listens on port 4321.
Performance Copilot exposes a large quantity of information. From the post to Bugtraq:
% pminfo -f -h sgi.victim.com filesys.mountdir
lists all disks and their mount points, for instance.
% pmem -h sgi.victim.com
will return something looking much like a ps -efl: all processes with
their owners and long argument lists.
This BID entry formerly contained information about a denial of service vulnerability. This information has been moved to BID 4642.
Exploit / POC
IRIX Performance Copilot Information Disclosure Vulnerability
Please see discussion for information on exploiting these problems.
Please see discussion for information on exploiting these problems.
Solution / Fix
IRIX Performance Copilot Information Disclosure Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
IRIX Performance Copilot Information Disclosure Vulnerability
References:
References: