SGI NetVisualyzer Arbitrary File Write Vulnerability

info
discussion
exploit
solution
references

SGI NetVisualyzer Arbitrary File Write Vulnerability

Solution:
SGI has announced that no patch will be released. Vulnerable users are advised to remove the suid bit from the nveventd binary:

# chmod u-s /usr/NetVis/etc/nveventd