Description
/usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to read the mail of other users.
References (3)
Core 3
Core References
Patch, Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert
http://www.cert.org/advisories/CA-1990-08.html
Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/13
Third Party Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/3164.php
Scores
EPSS
0.0125
EPSS Percentile
79.6%
Details
Status
published
Products (2)
sgi/irix
3.3
sgi/irix
3.3.1
Published
Oct 31, 1990
Tracked Since
Feb 18, 2026