SGI IRIX 3.3/3.3.1 usr/sbin/mail privileges management

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in SGI IRIX 3.3/3.3.1 (Operating System). It has been declared as problematic. This vulnerability affects some unknown functionality of the file usr/sbin/mail. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Field06/16/2014 03:30 PM04/11/2019 11:26 AM
typeOperating SystemOperating System
vendorSGISGI
nameIRIXIRIX
version3.3/3.3.13.3/3.3.1
fileusr/sbin/mailusr/sbin/mail
introductiondate644198400644198400
risk11
historic00
cvss2_vuldb_basescore2.12.1
cvss2_vuldb_tempscore2.12.1
cvss2_vuldb_avLL
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiNN
cvss2_vuldb_aiNN
cvss2_nvd_avLL
cvss2_nvd_acLL
cvss2_nvd_auNN
cvss2_nvd_ciPP
cvss2_nvd_iiNN
cvss2_nvd_aiNN
cvss3_meta_basescore4.04.0
cvss3_meta_tempscore4.04.0
cvss3_vuldb_basescore4.04.0
cvss3_vuldb_tempscore4.04.0
date657331200 (10/31/1990)657331200 (10/31/1990)
price_0day$0-$5k$0-$5k
cveCVE-1999-1554CVE-1999-1554
cve_nvd_published657331200657331200
cve_nvd_summary/usr/sbin/mail on sgi irix 3.3 and 3.3.1 does not properly set the group id to the group id of the user who started mail which allows local users to read the mail of other users./usr/sbin/mail on sgi irix 3.3 and 3.3.1 does not properly set the group id to the group id of the user who started mail which allows local users to read the mail of other users.
securityfocus1313
securityfocus_titleIRIX /usr/sbin/Mail VulnerabilityIRIX /usr/sbin/Mail Vulnerability
cwe269 (privilege escalation)269 (privilege escalation)
cvss3_vuldb_uiNN
locationWebsiteWebsite
cvss2_vuldb_eNDND
cvss2_vuldb_rlNDND
cvss2_vuldb_rcNDND
cvss3_vuldb_eXX
cvss3_vuldb_rlXX
cvss3_vuldb_rcXX
0day_days152152
cvss3_vuldb_avLL
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iNN
cvss3_vuldb_aNN
urlhttp://www.cert.org/advisories/CA-1990-08.html
securityfocus_date657331200 (10/31/1990)
securityfocus_classUnknown

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!