Secunia Security Advisory - SGI has issued a patch for SGI Advanced Linux Environment. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to gain knowledge of certain information or gain escalated privileges, or by malicious people to conduct cross-site scripting attacks, cause a DoS (Denial of Service), potentially overwrite arbitrary files on a user's system or compromise it.
5e5789ea1768751048c65443f15a84737faff5d2971b9b2d0827754b2348c434
----------------------------------------------------------------------
Bist Du interessiert an einem neuen Job in IT-Sicherheit?
Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT-
Sicherheit:
http://secunia.com/secunia_vacancies/
----------------------------------------------------------------------
TITLE:
SGI Advanced Linux Environment Multiple Updates
SECUNIA ADVISORY ID:
SA15625
VERIFY ADVISORY:
http://secunia.com/advisories/15625/
CRITICAL:
Highly critical
IMPACT:
Cross Site Scripting, Manipulation of data, Exposure of system
information, Privilege escalation, DoS, System access
WHERE:
>From remote
OPERATING SYSTEM:
SGI Advanced Linux Environment 3
http://secunia.com/product/4493/
DESCRIPTION:
SGI has issued a patch for SGI Advanced Linux Environment. This fixes
multiple vulnerabilities, which can be exploited by malicious, local
users to gain knowledge of certain information or gain escalated
privileges, or by malicious people to conduct cross-site scripting
attacks, cause a DoS (Denial of Service), potentially overwrite
arbitrary files on a user's system or compromise it.
For more information:
SA15418
SA15414
SA15292
SA15144
SA15124
SA13830
SA12306
SOLUTION:
Apply Patch 10174 for SGI ProPack 3 Service Pack 5.
http://support.sgi.com/
ORIGINAL ADVISORY:
ftp://patches.sgi.com/support/free/security/advisories/20050503-01-U.asc
OTHER REFERENCES:
SA15418:
http://secunia.com/advisories/15418/
SA15414:
http://secunia.com/advisories/15414/
SA15292:
http://secunia.com/advisories/15292/
SA15144:
http://secunia.com/advisories/15144/
SA15124:
http://secunia.com/advisories/15124/
SA13830:
http://secunia.com/advisories/13830/
SA12306:
http://secunia.com/advisories/12306/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------