CVE-2002-0359

4 documents4 sources

Severity

10.0CRITICAL

EPSS

5.8%

top 9.45%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SGI Irix

Timeline

PublishedJul 3

Latest updateMay 3

Description

xfsmd for IRIX 6.5 through 6.5.16 uses weak authentication, which allows remote attackers to call dangerous RPC functions, including those that can mount or unmount xfs file systems, to gain root privileges.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDsgi/irix48 versions+47

Patches

Patch: patches.sgi.com ↗Patch: patches.sgi.com ↗

🔴Vulnerability Details

GHSA

GHSA-wq86-c2f2-33wf: xfsmd for IRIX 6↗2022-05-03

▶

CVEList

CVE-2002-0359: xfsmd for IRIX 6↗2003-04-02

▶

🔍Detection Rules

Suricata

GPL RPC portmap rpc.xfsmd request TCP↗2010-09-23

▶