CVE-2000-0578 — LOW (3.7) — White Hats Nepal

Vulnerability Description

SGI MIPSPro compilers C, C++, F77 and F90 generate temporary files in /tmp with predictable file names, which could allow local users to insert malicious contents into these files as they are being compiled by another user.

CVSS Score

3.7

LOW

AV:L/AC:H/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Sgi	Mipspro Compilers	7.1

References

http://archives.neohapsis.com/archives/bugtraq/2000-06/0204.htmlExploitVendor Advisory
http://www.securityfocus.com/bid/1412ExploitVendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2000-06/0204.htmlExploitVendor Advisory
http://www.securityfocus.com/bid/1412ExploitVendor Advisory

FAQ

What is CVE-2000-0578?

CVE-2000-0578 is a vulnerability with a CVSS score of 3.7 (LOW). SGI MIPSPro compilers C, C++, F77 and F90 generate temporary files in /tmp with predictable file names, which could allow local users to insert malicious contents into these files as they are being co...

How severe is CVE-2000-0578?

CVE-2000-0578 has been rated LOW with a CVSS base score of 3.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2000-0578?

Check the references section above for vendor advisories and patch information. Affected products include: Sgi Mipspro Compilers.