CVE-2002-0652

Published: Jul 3, 2002Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

xfsmd for IRIX 6.5 through 6.5.16 allows remote attackers to execute arbitrary code via shell metacharacters that are not properly filtered from several calls to the popen() function, such as export_fs().

Affected (17)

Products: Sgi: Irix

Sgi

1 product

Irix

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Sgi Irix	Version 6.5.10
Sgi Irix	Version 6.5.11
Sgi Irix	Version 6.5.12
Sgi Irix	Version 6.5.13
Sgi Irix	Version 6.5.14
Sgi Irix	Version 6.5.15
Sgi Irix	Version 6.5.16
Sgi Irix	Version 6.5.1
Sgi Irix	Version 6.5.2
Sgi Irix	Version 6.5.3
Sgi Irix	Version 6.5.4
Sgi Irix	Version 6.5.5
Sgi Irix	Version 6.5.6
Sgi Irix	Version 6.5.7
Sgi Irix	Version 6.5.8
Sgi Irix	Version 6.5.9
Sgi Irix	Version 6.5

References (6)

ftp://patches.sgi.com/support/free/security/advisories/20020605-01-I (unsafe URL)

Source: cve@mitre.org

ftp://patches.sgi.com/support/free/security/advisories/20020606-01-I (unsafe URL)

Source: cve@mitre.org

PatchVendor Advisory

http://marc.info/?l=bugtraq&m=102459162909825&w=2

Source: cve@mitre.org

ftp://patches.sgi.com/support/free/security/advisories/20020605-01-I (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

ftp://patches.sgi.com/support/free/security/advisories/20020606-01-I (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://marc.info/?l=bugtraq&m=102459162909825&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.