CVE-2005-0113
SGI IRIX - Local Command Execution via SUN_TTSESSION_CMD Environment Variable
Title source: llmDescription
inpview in SGI IRIX allows local users to execute arbitrary commands via the SUN_TTSESSION_CMD environment variable, which is executed by inpview without dropping privileges.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18894
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1012894
Vendor Advisory third-party-advisory
x_refsource_idefense
http://www.idefense.com/application/poi/display?id=182&type=vulnerabilities
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/13858
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/12915
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/12259
Scores
EPSS
0.0007
EPSS Percentile
20.9%
Details
Status
published
Products (1)
sgi/irix
6.5
Published
Jan 14, 2005
Tracked Since
Feb 18, 2026