{"vuid":"VU#111673","idnumber":"111673","name":"SGI IRIX \"xfsdump\" creates quota information files insecurely","keywords":["SGI","IRIX","xfsdump","quota information","insecure file permissions"],"overview":"A vulnerability exists in xfsdump on SGI IRIX. Exploitation of this vulnerability may allow a local attacker to gain root privileges. Because other operating systems ship with xfsdump, vendors other than SGI may be affected.","clean_desc":"From the xfsdump man page: xfsdump backs up files and their attributes in a filesystem. The files are dumped to storage media, a regular file, or standard output. Options allow the operator to have all files dumped, just files that have changed since a previous dump, or just files contained in a list of pathnames. xfsdump does not create quota files in a secure manner. As a result, a local attacker may be able to gain superuser privileges on a vulnerable system. For more details, please see SGI Security Advisory 20030404-01-P.","impact":"A local attacker may be able to gain superuser privileges.","resolution":"Apply a patch from your vendor.","workarounds":"","sysaffected":"","thanks":"This vulnerability was discovered by Ethan Benson.","author":"This document was written by Ian A Finlay.","public":["http://lists.netsys.com/pipermail/full-disclosure/2003-April/009167.html","http://www.mcsr.olemiss.edu/cgi-bin/man-cgi?xfsdump+1"],"cveids":["CVE-2003-0173"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2003-04-10T15:25:20Z","publicdate":"2003-04-10T00:00:00Z","datefirstpublished":"2003-04-10T19:55:17Z","dateupdated":"2003-06-16T19:42:05Z","revision":5,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"3","cam_population":"10","cam_impact":"20","cam_easeofexploitation":"10","cam_attackeraccessrequired":"10","cam_scorecurrent":"6.75","cam_scorecurrentwidelyknown":"8.625","cam_scorecurrentwidelyknownexploited":"16.125","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":6.75,"vulnote":null}