IRIX contains a flaw related to the XFS Filesystem Reorganizer that may allow a malicious user to overwrite sensitive system files and gain root access. No further details have been provided.

Upgrade to version 6.5.11 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround: change root's crontab to run fsr_xfs with the -f
option and point at a directory that normal users can't write to, such as
/var/adm.

To set up this workaround, follow these steps:

1) Become the superuser

$ su -

2) Use vi or your favorite text editor to edit the file
/var/spool/cron/crontabs/root

# vi /var/spool/cron/crontabs/root

3) Look for a line that looks like this:

0 3 * * 0 if test -x /usr/etc/fsr; then (cd
/usr/tmp; /usr/etc/fsr) fi

4) Change it to this:

0 3 * * 0 if test -x /usr/etc/fsr; then (cd
/usr/tmp; /usr/etc/fsr -f /var/adm/.fsrlast) fi

5) Save the file and exit from the editor. crond will automatically detect
the changes to the file, so it is not necessary to stop and restart crond.

• CVE ID: 2002-0356 (see also: NVD)
• Bugtraq ID: 4706
• ISS X-Force ID: 9042
• Vendor Specific Advisory URL: ftp://patches.sgi.com/support/free/security/advisories/20020504-01-I
• Mail List Post: http://archives.neohapsis.com/archives/vendor/2002-q2/0031.html
• CIAC Advisory: M-080
• Keyword: XFS Filesystem Reorganizer

• John Vanderpool - vandernssdca.gsfc.nasa.gov -