Description
gr_osview in SGI IRIX 6.5.22, and possibly other 6.5 versions, does not drop privileges when opening description files while in debug mode, which allows local users to read a line from arbitrary files via the -d and -D options, which prints the line as a formatting error.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by anonymous · textlocalirix
https://www.exploit-db.com/exploits/25361
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/15351
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1013662
Patch vendor-advisory
x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/20050402-01-P
Patch, Vendor Advisory third-party-advisory
x_refsource_idefense
http://www.idefense.com/application/poi/display?id=226&type=vulnerabilities
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/14875
Scores
EPSS
0.0060
EPSS Percentile
69.5%
Details
Status
published
Products (1)
sgi/irix
6.5.22
Published
May 02, 2005
Tracked Since
Feb 18, 2026