SGI IRIX <= 6.4 rmail Vulnerability



EDB-ID: 19349 CVE: N/A OSVDB-ID: 83516
Author: Yuri Volobuev Published: 1997-05-07 Verified: Verified
Exploit Code:   Download Vulnerable App:   N/A

Rating

(0.0)
Prev Home Next
source: http://www.securityfocus.com/bid/460/info

A vulnerability exists in the rmail utility, included by SGI with it's Irix operating system. By failing to sanity check the contents of an environment variable, arbitrary commands may be executed with gid mail. rmail is used with uucp.


The following example is provided:

setenv LOGNAME blah; command-to-execute