Description
Vulnerability in FAM 2.6.8, 2.6.6, and other versions allows unprivileged users to obtain the names of files whose access is restricted to the root group.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Michael Wardle · textlocalirix
https://www.exploit-db.com/exploits/21720
References (6)
Core 6
Core References
Various Sources vendor-advisory
x_refsource_freebsd
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2005-005.html
Vendor Advisory vendor-advisory
x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/20000301-03-I
Third Party Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9880.php
Patch, Vendor Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2002/dsa-154
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/5487
Scores
EPSS
0.0107
EPSS Percentile
77.9%
Details
Status
published
Products (6)
debian/debian_linux
3.0
sgi/fam
2.6.6
sgi/fam
2.6.8
sgi/irix
6.5.15
sgi/irix
6.5.16
sgi/irix
6.5.17
Published
Sep 05, 2002
Tracked Since
Feb 18, 2026