CVE-2005-0139

SGI Irix - Access Control

Title source: rule

Description

Unknown vulnerability in rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not sufficiently restrict access rights for read-mostly exports, which allows attackers to conduct unauthorized activities.

References (4)

[Patch] ftp://patches.sgi.com/support/free/security/advisories/20050601-01-U

[Vendor Advisory] http://www.ciac.org/ciac/bulletins/p-214.shtml

[Third Party Advisory] http://secunia.com/advisories/15619

[Third Party Advisory] http://www.vupen.com/english/advisories/2005/0702

Scores

EPSS 0.0049

EPSS Percentile 65.1%

Classification

CWE

CWE-264

Status draft

Affected Products (3)

sgi/irix

Timeline

Published Sep 21, 2005

Tracked Since Feb 18, 2026