SGI IRIS console contains a vulnerability which may allow a local attacker to gain elevated privileges.
SGI describes IRISconsole as a "central control point that manages and monitors servers and logs their activity." A vulnerability in IRISconsole may allow a local attacker to login to the icadmin account. Doing so may allow the attacker to gain elevated privileges. For further technical information, please see SGI Security Advisory 20020406-01-P.
A local attacker may be able to elevate their privileges.
Apply a vendor patch.
Thanks to SGI for publishing information about this vulnerability.
This document was written by Ian A. Finlay.
|Date First Published:||2003-08-18|
|Date Last Updated:||2003-08-18 18:21 UTC|