IRIX Origin 3000 Arbitrary MAC Address Modification
Remote / Network Access
Loss of Integrity
IRIX Origin 3000 contains a flaw that may allow a malicious user to bypass firewall rules. The issue is triggered when Origin 3000 is upgraded from a version prior to 6.5.13 to version 6.5.13, 6.5.14, 6.5.15 or 6.5.16. When the system is upgraded to a vulnerable version the MAC address for the base internet card is changed. It is possible that the flaw may allow an attacker to bypass otherwise correct access control measures resulting in a loss of integrity.
Upgrade to version 6.5.17 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
IRIX is the UNIX Operating Environment distributed by SGI.
When IRIX is upgraded from a version prior to the 6.5.13 release to a release between versions 6.5.13 and 6.5.16, a change is made that may affect firewall rulesets. This could allow an attacker to bypass otherwise correct access controls.
No exploit is required for this vulnerability.
This problem does not exist in IRIX version 6.5.17.