|
SGI Advanced Linux Environment Multiple Updates
|
|
Secunia Advisory:
|
SA13886
|
|
|
Release Date:
|
2005-01-17
|
|
Last Update:
|
2005-01-20
|
|
Popularity:
|
5,577 views
|
|
|
Critical:
|
 Highly critical
|
|
Impact:
|
Security Bypass Cross Site Scripting Exposure of sensitive information Privilege escalation DoS System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | SGI Advanced Linux Environment 3
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| CVE reference: | CVE-2004-0110 CVE-2004-0941 CVE-2004-0958 CVE-2004-0959 CVE-2004-0977 CVE-2004-0983 CVE-2004-0989 CVE-2004-0990 CVE-2004-1010 CVE-2004-1019 CVE-2004-1036 CVE-2004-1065 CVE-2004-1154
|
|
Description: SGI has issued a patch for SGI Advanced Linux Environment. This fixes multiple vulnerabilities, which can be exploited to gain escalated privileges, cause a DoS (Denial of Service), bypass certain security restrictions, conduct script insertion attacks, gain knowledge of sensitive information, or compromise a vulnerable system.
For more information:
SA10958
SA12860
SA12996
SA13000
SA13094
SA13123
SA13155
SA13179
SA13453
SA13481
Solution: Apply patch 10131 for SGI ProPack 3 Service Pack 3:
ftp://patches.sgi.com/support/free/security/patches/ProPack/3/patch10131.tar.gz
Changelog: 2005-01-20: Removed rejected CVE reference.
Original Advisory: ftp://patches.sgi.com/support/free/security/advisories/20050101-01-U.asc
Other References: SA10958:
http://secunia.com/advisories/10958/
SA12860:
http://secunia.com/advisories/12860/
SA12996:
http://secunia.com/advisories/12996/
SA13000:
http://secunia.com/advisories/13000/
SA13094:
http://secunia.com/advisories/13094/
SA13123:
http://secunia.com/advisories/13123/
SA13155:
http://secunia.com/advisories/13155/
SA13179:
http://secunia.com/advisories/13179/
SA13453:
http://secunia.com/advisories/13453/
SA13481:
http://secunia.com/advisories/13481/
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|