CVE-2005-0138

CWE-173 documents3 sources
Severity
7.5HIGH
EPSS
0.5%
top 34.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SGI Irix
Timeline
PublishedSep 21
Latest updateMay 3

Description

rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not correctly allow access to anonymous clients that connect from a system whose hostname can not be determined. NOTE: while this issue occurs in a security mechanism, there is no apparent attacker role and probably does not satisfy the CVE definition of a vulnerability.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDsgi/irix6.5.25, 6.5.26, 6.5.27+2

Patches

Patch: patches.sgi.comPatch: patches.sgi.com

🔴Vulnerability Details

2
GHSA
GHSA-6px7-wrp5-gw6j: rpc2022-05-03
CVEList
CVE-2005-0138: rpc2005-09-21