Vulnerability Description
MediaMail and MediaMail Pro in SGI IRIX 6.5.16 and earlier allows local users to force the program to dump core via certain arguments, which could allow the users to read sensitive data or gain privileges.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sgi | Mediamail | All versions |
References
- ftp://patches.sgi.com/support/free/security/advisories/20020602-01-IPatchVendor Advisory
- http://www.iss.net/security_center/static/9292.php
- http://www.securityfocus.com/bid/4959
- ftp://patches.sgi.com/support/free/security/advisories/20020602-01-IPatchVendor Advisory
- http://www.iss.net/security_center/static/9292.php
- http://www.securityfocus.com/bid/4959
FAQ
What is CVE-2002-0358?
CVE-2002-0358 is a vulnerability with a CVSS score of 4.6 (MEDIUM). MediaMail and MediaMail Pro in SGI IRIX 6.5.16 and earlier allows local users to force the program to dump core via certain arguments, which could allow the users to read sensitive data or gain privil...
How severe is CVE-2002-0358?
CVE-2002-0358 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0358?
Check the references section above for vendor advisories and patch information. Affected products include: Sgi Mediamail.