[原文]Unknown vulnerability in rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not sufficiently restrict access rights for read-mostly exports, which allows attackers to conduct unauthorized activities.
IRIX rpc.mountd read-mostly Export Access Rights Issue
Remote / Network Access
Attack Type Unknown
Loss of Integrity
IRIX contains a flaw that may allow a malicious user to gain excessive access rights for read-mostly exports. It is possible that the flaw may allow unauthorized reading and writing, resulting in a loss of integrity. No further details are available.
Currently, there are no known workarounds or upgrades to correct this issue. However, IRIX has released a patch to address this vulnerability.
SGI IRIX is susceptible to an unspecified file access vulnerability. This issue is due to a failure of the NFS server to properly enforce privileges on client computers.
This issue allows client computers to gain access beyond that which the administrator has allowed. In certain unspecified circumstances, NFS clients may gain inappropriate read-write access to files contained in read-mostly network shares.
SGI IRIX versions 6.5.25 through 6.5.27 are vulnerable. Previous versions may also be affected.
An exploit is not required.
The vendor has released security advisory 20050601-01-P, along with fixes to address this issue. Please see the referenced advisory for further information.