Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0798Irix vulnerability

4 documents4 sources
Severity
10.0CRITICALNVD
EPSS
2.2%
top 15.64%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
SGI Irix
Timeline
PublishedOct 20
Latest updateApr 30

Description

The truncate function in IRIX 6.x does not properly check for privileges when the file is in the xfs file system, which allows local users to delete the contents of arbitrary files.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDsgi/irix6.2, 6.3, 6.4+2

🔴Vulnerability Details

2
GHSA
GHSA-q57h-4j7q-jmcr: The truncate function in IRIX 62022-04-30
CVEList
CVE-2000-0798: The truncate function in IRIX 62000-09-21

💥Exploits & PoCs

1
Exploit-DB
IRIX 6.2/6.3/6.4 - xfs truncate() Privilege Check1997-02-01
CVE-2000-0798 — SGI Irix vulnerability | cvebase