Description
gr_osview in SGI IRIX does not drop privileges before opening files, which allows local users to overwrite arbitrary files via the -s option.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by anonymous · textlocalirix
https://www.exploit-db.com/exploits/25362
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1013662
Patch vendor-advisory
x_refsource_sgi
ftp://patches.sgi.com/support/free/security/advisories/20050402-01-P
Exploit, Patch, Vendor Advisory third-party-advisory
x_refsource_idefense
http://www.idefense.com/application/poi/display?id=225&type=vulnerabilities
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/14875
Scores
EPSS
0.0051
EPSS Percentile
66.5%
Details
Status
published
Products (48)
sgi/irix
3.2
sgi/irix
3.3
sgi/irix
3.3.1
sgi/irix
3.3.2
sgi/irix
3.3.3
sgi/irix
4.0
sgi/irix
4.0.1
sgi/irix
4.0.1t
sgi/irix
4.0.2
sgi/irix
4.0.3
... and 38 more
Published
May 02, 2005
Tracked Since
Feb 18, 2026