Description
Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.
Affected products
- digital / osf_11.2 – 1.2
- digital / osf_11.3 – 1.3
- digital / osf_12.0 – 2.0
- digital / osf_13.0 – 3.0
- digital / osf_13.2 – 3.2
- digital / unix3.2g – 3.2g
- digital / unix4.0 – 4.0
- sgi / irix6.0 – 6.0
- sgi / irix6.0.1 – 6.0.1
- sgi / irix6.0.1 – 6.0.1
- sgi / irix5.0 – 5.0
- sgi / irix6.2 – 6.2
- sgi / irix6.3 – 6.3
- sgi / irix6.1 – 6.1
- sgi / irix5.0.1 – 5.0.1
- sgi / irix5.1 – 5.1
- sgi / irix5.1.1 – 5.1.1
- sgi / irix5.2 – 5.2
- sgi / irix5.3 – 5.3
- sgi / irix5.3 – 5.3