Description
IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by David Hedley · clocalirix
https://www.exploit-db.com/exploits/19310
References (4)
Scores
CVSS v3
8.4
EPSS
0.0083
EPSS Percentile
74.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-434
Status
published
Products (8)
sgi/irix
5.1
sgi/irix
5.2
sgi/irix
5.3
sgi/irix
6.0
sgi/irix
6.1
sgi/irix
6.2
sgi/irix
6.3
sgi/irix
6.4
Published
May 26, 1997
Tracked Since
Feb 18, 2026