COMMAND

    cvconnect

SYSTEMS AFFECTED

    IRIX with Workshop 2.6 or lower

PROBLEM

    Following  is  based  on   Silicon  Graphics  Security   Advisory.
    WorkShop  is  a  suite  of  software  tools  to  aid  in debugging
    programs.  The  cvconnect(1m) program is  invoked by WorkShop  and
    is not normally directly run  by users.  A vulnerability  has been
    discovered in  cvconnect(1M) which  will allow  users to overwrite
    any file on the system.

    The  WorkShop  Debugger  and  Performance  tools  are  an optional
    product  and  are  not  installed  on  the  default  IRIX  system.
    Versions  2.6.*  and  lower  of  WorkShop  have this cvconnect(1M)
    vulnerability.    With   a   local   account,   the  cvconnect(1M)
    vulnerability  can  be  exploited   locally  and  remotely.    The
    cvconnect(1M) vulnerability can be utilized to overwrite any  file
    on the system.  The cvconnect(1M) vulnerability has been  publicly
    discussed in Usenet newsgroups and mailing lists.

SOLUTION

    This  issue  has  been  corrected  in  WorkShop  2.7  and  higher.
    Although patches are available for this issue, it is realized that
    there may be situations  where installing the patches  immediately
    may not be possible.   The steps below can  be used to remove  the
    vulnerability  by  removing  the  permissions of the cvconnect(1M)
    program:

        # /bin/chmod 500 /usr/lib/WorkShop/cvconnect

    Upgrade to  WorkShop 2.7  or higher  which is  available from your
    local  SGI  support  provider.   WorkShop  2.7  CD  Part Number is
    812-0768-002.