CVE-2000-0799
published 2000-10-20CVE-2000-0799: inpview in InPerson in SGI IRIX 5.3 through IRIX 6.5.10 allows local users to gain privileges via a symlink attack on the .ilmpAAA temporary file.
PriorityP413low3.7CVSS 2.0
AVLACHAuNCPIPAP
EXPLOIT
EPSS
0.75%
50.3th percentile
inpview in InPerson in SGI IRIX 5.3 through IRIX 6.5.10 allows local users to gain privileges via a symlink attack on the .ilmpAAA temporary file.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
| sgi | irix | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Youngzsoft CMailServer 3.30/4.0 - Remote Buffer Overflow (2)
exploitdb·2002-05-21
CVE-2002-0799 Youngzsoft CMailServer 3.30/4.0 - Remote Buffer Overflow (2)
Youngzsoft CMailServer 3.30/4.0 - Remote Buffer Overflow (2)
---
// source: https://www.securityfocus.com/bid/4789/info
CMailServer is vulnerable to a buffer overflow condition. It has been reported that the CMailServer does not perform proper bounds checking on the USER argument.
It is possible for a remote malicious attacker to craft a request that will result in code execution on the vulnerable system.
This issue has been reported in CMailServer 3.30. Other versions may also be affected.
/*
Remote exploit for Pop3 service CMailServer v4.0
by m00 security [www.m00.ru]
Advistory by Dennis Rand der[at]infowarfare.dk
Coded by Over_G overg[at]mail.ru
You may change 2 type: DOS or Portbind
1) Denial of service
2) Bind shell on port 61200
Tested only on Windows 2000 SP3 English
G
Exploit-DB
IRIX 6.5.x - '/usr/lib/InPerson/inpview' Race Condition
exploitdb·2000-01-01
CVE-2000-0799 IRIX 6.5.x - '/usr/lib/InPerson/inpview' Race Condition
IRIX 6.5.x - '/usr/lib/InPerson/inpview' Race Condition
---
/*
source: https://www.securityfocus.com/bid/1530/info
Certain versions of IRIX ship with a version of inpview that creates files in '/var/tmp/' in an insecure manner and is therefore prone to a race condition.
InPerson's 'inpview' is a networked multimedia conferencing tool. InPerson provides multiway audio and video conferencing with a shared whiteboard, combined into a single, easy-to-use application. You use a separate "phone" tool to place and answer calls.
The 'inpview' program writes out temporary files in the '/var/tmp' directory. Because these filenames are not random, an attacker can create a symlink to a previously created filename and force the SUID 'inpview' to overwrite the file with 'rw-rw-rw' permissions.
*/
No writeups or analysis indexed.
ftp://patches.sgi.com/support/free/security/advisories/20001101-01-Ihttp://www.securityfocus.com/bid/1530http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558%40ix.put.poznan.plhttps://exchange.xforce.ibmcloud.com/vulnerabilities/5065ftp://patches.sgi.com/support/free/security/advisories/20001101-01-Ihttp://www.securityfocus.com/bid/1530http://www.securityfocus.com/templates/archive.pike?list=1&msg=200008021924.e72JOVs12558%40ix.put.poznan.plhttps://exchange.xforce.ibmcloud.com/vulnerabilities/5065
2000-10-20
Published