CVE-2001-0891

Format string vulnerability in NQS daemon (nqsdaemon) in NQE 3.3.0.16 for CRAY UNICOS and SGI IRIX allows a local user to gain root privileges by using qsub to submit a batch job whose name contains formatting characters.
Configurations

Configuration 1 (hide)

cpe:2.3:a:sgi:nqsdaemon:3.3.0.16:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:cray:unicos:*:*:*:*:*:*:*:*

History

20 Nov 2024, 23:36

Type Values Removed Values Added
References () ftp://patches.sgi.com/support/free/security/advisories/20020101-01-I - Patch, Vendor Advisory () ftp://patches.sgi.com/support/free/security/advisories/20020101-01-I - Patch, Vendor Advisory
References () http://marc.info/?l=bugtraq&m=100695627423924&w=2 - () http://marc.info/?l=bugtraq&m=100695627423924&w=2 -
References () http://www.osvdb.org/3275 - () http://www.osvdb.org/3275 -
References () http://www.securityfocus.com/bid/3590 - () http://www.securityfocus.com/bid/3590 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/7618 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/7618 -

Information

Published : 2002-01-31 05:00

Updated : 2024-11-20 23:36


NVD link : CVE-2001-0891

Mitre link : CVE-2001-0891

CVE.ORG link : CVE-2001-0891


JSON object : View

Products Affected

sgi

  • nqsdaemon

cray

  • unicos