SGI NetVisualyzer Arbitrary File Write Vulnerability

info
discussion
exploit
solution
references

SGI NetVisualyzer Arbitrary File Write Vulnerability

A vulnerability has been reported in NetVisualyzer Data Station Software for IRIX. It may be possible for a local attacker to exploit the nveventd binary in order to write data to arbitrary system files. nveventd is installed suid root by default.