CVE-2003-0575

Name: CVE-2003-0575
Creator: NVD / NIST
Published: 2003-08-27T04:00:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 2.90%

Last modified Jun 16, 2026

CVE-2003-0575 is a vulnerability of currently unknown severity. Heap-based buffer overflow in the name services daemon (nsd) in SGI IRIX 6.5.x through 6.5.21f, and possibly earlier versions, allows attackers to gain root privileges via the AUTH_UNIX gid list.. EPSS estimates a 2.90% chance of exploitation in the next 30 days.

Description

Heap-based buffer overflow in the name services daemon (nsd) in SGI IRIX 6.5.x through 6.5.21f, and possibly earlier versions, allows attackers to gain root privileges via the AUTH_UNIX gid list.

Metrics

EPSS Probability

2.90%

85.2th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Sgi	Irix	6.5
Sgi	Irix	6.5.1
Sgi	Irix	6.5.2
Sgi	Irix	6.5.3
Sgi	Irix	6.5.4
Sgi	Irix	6.5.5
Sgi	Irix	6.5.6
Sgi	Irix	6.5.7
Sgi	Irix	6.5.8
Sgi	Irix	6.5.9
Sgi	Irix	6.5.10
Sgi	Irix	6.5.11
Sgi	Irix	6.5.12
Sgi	Irix	6.5.13
Sgi	Irix	6.5.14
Sgi	Irix	6.5.15
Sgi	Irix	6.5.16
Sgi	Irix	6.5.17
Sgi	Irix	6.5.17f
Sgi	Irix	6.5.17m
Sgi	Irix	6.5.18
Sgi	Irix	6.5.18f
Sgi	Irix	6.5.18m
Sgi	Irix	6.5.19
Sgi	Irix	6.5.19f
Sgi	Irix	6.5.19m
Sgi	Irix	6.5.20
Sgi	Irix	6.5.20f
Sgi	Irix	6.5.20m
Sgi	Irix	6.5.21
Sgi	Irix	6.5.21f
Sgi	Irix	6.5.21m

References

ftp://patches.sgi.com/support/free/security/advisories/20030704-01-PPatch, Vendor Advisory
http://marc.info/?l=bugtraq&m=105958240709302&w=2
http://secunia.com/advisories/9390
http://www.ciac.org/ciac/bulletins/n-130.shtml
http://www.kb.cert.org/vuls/id/682900US Government Resource
http://www.osvdb.org/2337
http://www.securityfocus.com/bid/8304Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/12763
ftp://patches.sgi.com/support/free/security/advisories/20030704-01-PPatch, Vendor Advisory
http://marc.info/?l=bugtraq&m=105958240709302&w=2
http://secunia.com/advisories/9390
http://www.ciac.org/ciac/bulletins/n-130.shtml
http://www.kb.cert.org/vuls/id/682900US Government Resource
http://www.osvdb.org/2337
http://www.securityfocus.com/bid/8304Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/12763

Timeline

Published: Aug 27, 2003
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2003-0575?

Heap-based buffer overflow in the name services daemon (nsd) in SGI IRIX 6.5.x through 6.5.21f, and possibly earlier versions, allows attackers to gain root privileges via the AUTH_UNIX gid list.

How severe is CVE-2003-0575?

Severity scoring for CVE-2003-0575 is pending analysis. The EPSS model estimates a 2.90% probability of exploitation in the next 30 days.

How do I fix CVE-2003-0575?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2003-0575?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST