CVE-2005-0464

Name of the Vulnerable Software and Affected Versions SGI IRIX versions 6.5.22 and possibly other 6.5 versions

Description The issue concerns a problem where gr osview in debug mode does not properly drop privileges when opening description files. This allows local users to read a line from arbitrary files by utilizing the -d and -D options, which then prints the line as a formatting error.

Recommendations For SGI IRIX versions 6.5.22 and possibly other 6.5 versions, consider disabling the debug mode for gr osview until a proper fix is available to prevent exploitation. Restrict access to the gr osview utility to minimize the risk of unauthorized file access.