PT-2005-2820 · Sgi · Arshal+2

Published

2005-07-12

Updated

2008-09-05

CVE-2005-1859

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions SGI ProPack versions 3 with SP 5 and 6, and SGI ProPack 4

Description The issue allows local users to execute arbitrary shells as root on other hosts in the cluster or array. This is due to an unknown vulnerability in arshell in the Array Service (arrayd).

Recommendations For SGI ProPack 3 with SP 5 and 6, and SGI ProPack 4, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1859

Affected Products

Array Service

Sgi Propack

Arshal

PT-2005-2820 · Sgi · Arshal+2

CVE-2005-1859

Related Identifiers

Affected Products

References · 3