7.2
CVSSv2

CVE-1999-0029

Published: 16/07/1997 Updated: 09/09/2008
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

root privileges via buffer overflow in ordist command on SGI IRIX systems.

Affected Products

Vendor Product Versions
SgiIrix*

Exploits

source: wwwsecurityfocuscom/bid/415/info A buffer overflow exists in the ordist program, as shipped with Irix 6x and 5x from Silicon Graphics By supplying long arguments to the '-d' option, containing a properly crafted buffer of machine exectuable code, root privilege can be obtained #include <stdlibh> #include <fcntlh&g ...