CVE-2001-0823

PCP <2.2.1-3 - Privilege Escalation

Title source: llm

Description

The pmpost program in Performance Co-Pilot (PCP) before 2.2.1-3 allows a local user to gain privileges via a symlink attack on the NOTICES file in the PCP log directory (PCP_LOG_DIR).

Exploits (1)

exploitdb WORKING POC VERIFIED

by IhaQueR · clocalirix

https://www.exploit-db.com/exploits/20937

View Code ZIP pw:eip

References (5)

[Mailing List] http://marc.info/?l=bugtraq&m=99290754901708&w=2

[Patch, Vendor Advisory] http://archives.neohapsis.com/archives/bugtraq/2001-06/0245.html

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/2887

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/6724

[Patch] ftp://patches.sgi.com/support/free/security/advisories/20010601-01-A

Scores

EPSS 0.0061

EPSS Percentile 69.9%

Details

Status published

Products (12)

sgi/performance_co-pilot 2.1.1

sgi/performance_co-pilot 2.1.2

sgi/performance_co-pilot 2.1.3

sgi/performance_co-pilot 2.1.4

sgi/performance_co-pilot 2.1.5

sgi/performance_co-pilot 2.1.6

sgi/performance_co-pilot 2.1.7

sgi/performance_co-pilot 2.1.8

sgi/performance_co-pilot 2.1.9

sgi/performance_co-pilot 2.1.10

... and 2 more

Published Dec 06, 2001

Tracked Since Feb 18, 2026