threat
engine
.sh
Back
·
··:··
Home
/
Product
/
sgi irix
Product
sgi irix
182 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2010-1039
all versions
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier
CVE-2007-4938
all versions
Heap-based buffer overflow in libmpdemux/aviheader.c in MPlayer 1.0rc1 and earlier allows remote attackers to cause a denial of se
CVE-2005-2925
all versions
runpriv in SGI IRIX allows local users to bypass intended restrictions and execute arbitrary commands via shell metacharacters in
CVE-2005-0139
all versions
Unknown vulnerability in rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not sufficiently restrict access rights for read-m
CVE-2005-0138
all versions
rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not correctly allow access to anonymous clients that connect from a system
CVE-2005-0465
all versions
gr_osview in SGI IRIX does not drop privileges before opening files, which allows local users to overwrite arbitrary files via the
CVE-2005-0464
all versions
gr_osview in SGI IRIX 6.5.22, and possibly other 6.5 versions, does not drop privileges when opening description files while in de
CVE-2005-0113
all versions
inpview in SGI IRIX allows local users to execute arbitrary commands via the SUN_TTSESSION_CMD environment variable, which is exec
CVE-2004-0139
all versions
Unknown vulnerability in the bsd.a kernel networking for SGI IRIX 6.5.22 through 6.5.25, and possibly earlier versions, in which "
CVE-2004-1891
all versions
The ftp_syslog function in ftpd in SGI IRIX 6.5.20 "doesn't work with anonymous FTP," which has an unknown impact, possibly preven
CVE-2004-1889
all versions
Unknown vulnerability in ftpd in SGI IRIX 6.5.20 through 6.5.23 allows remote attackers to cause a denial of service (hang) via a
CVE-2004-0137
all versions
Unknown vulnerability in init for IRIX 6.5.20 through 6.5.24 allows local users to cause a denial of service (system panic) as a r
CVE-2004-0136
all versions
The mapelf32exec function call in IRIX 6.5.20 through 6.5.24 allows local users to cause a denial of service (system crash) via a
CVE-2004-0135
all versions
The syssgi SGI_IOPROBE system call in IRIX 6.5.20 through 6.5.24 allows local users to gain privileges by reading and writing to k
CVE-2004-0483
all versions
Unknown vulnerability in rpc.mountd for SGI IRIX 6.5.24 allows remote attackers to cause a denial of service (infinite loop) via c
CVE-2004-2002
all versions
Unknown vulnerability in SGI IRIX 6.5 through 6.5.22m allows remote attackers to cause a denial of service via a certain UDP packe
CVE-2004-2001
all versions
ifconfig "-arp" in SGI IRIX 6.5 through 6.5.22m does not properly disable ARP requests from being sent or received.
CVE-2003-0797
all versions
Unknown vulnerability in rpc.mountd in SGI IRIX 6.5 through 6.5.22 allows remote attackers to cause a denial of service (process d
CVE-2003-0796
all versions
Unknown vulnerability in rpc.mountd SGI IRIX 6.5.18 through 6.5.22 allows remote attackers to mount from unprivileged ports even w
CVE-2003-0175
all versions
SGI IRIX before 6.5.21 allows local users to cause a denial of service (kernel panic) via a certain call to the PIOCSWATCH ioctl.
CVE-2003-0683
all versions
NFS in SGI 6.5.21m and 6.5.21f does not perform access checks in certain configurations when an /etc/exports entry uses wildcards
CVE-2003-0688
all versions
The DNS map code in Sendmail 8.12.8 and earlier, when using the "enhdnsbl" feature, does not properly initialize certain data stru
CVE-2003-0694
all versions
The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstr
CVE-2003-0680
all versions
Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions.
CVE-2003-0679
<= 6.5.21f
Unknown vulnerability in the libcpr library for the Checkpoint/Restart (cpr) system on SGI IRIX 6.5.21f and earlier allows local u
CVE-2003-0576
all versions
Unknown vulnerability in the NFS daemon (nfsd) in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of servic
CVE-2003-0575
all versions
Heap-based buffer overflow in the name services daemon (nsd) in SGI IRIX 6.5.x through 6.5.21f, and possibly earlier versions, all
CVE-2003-0574
all versions
Unknown vulnerability in SGI IRIX 6.5.x through 6.5.20, and possibly earlier versions, allows local users to cause a core dump in
CVE-2003-0573
all versions
The DNS callbacks in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, do not perform sufficient sanity checki
CVE-2003-0572
all versions
Unknown vulnerability in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, allows attackers to cause a denial
CVE-2003-0177
all versions
SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, does not follow "-" entries in the /etc/group file, which may cause
CVE-2003-0176
all versions
The Name Service Daemon (nsd), when running on an NIS master on SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, all
CVE-2003-0473
all versions
Unknown vulnerability in the IPv6 capability in IRIX 6.5.19 causes snoop to process packets as the root user, with unknown implica
CVE-2003-0472
all versions
The IPv6 capability in IRIX 6.5.19 allows remote attackers to cause a denial of service (hang) in inetd via port scanning.
CVE-2003-0174
<= 6.5.19
The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by
9.8
CRITICAL
CVE-2003-0173
all versions
xfsdq in xfsdump does not create quota information files securely, which allows local users to gain root privileges.
CVE-2002-1419
all versions
The upgrade of IRIX on Origin 3000 to 6.5.13 through 6.5.16 changes the MAC address of the system, which could modify intended acc
CVE-2002-1518
all versions
mv in IRIX 6.5 creates a directory with world-writable permissions while moving a directory, which could allow local users to modi
CVE-2002-1517
all versions
fsr_efs in IRIX 6.5 allows local users to conduct unauthorized file activities via a symlink attack, possibly via the .fsrlast fil
CVE-2002-1516
all versions
rpcbind in SGI IRIX, when using the -w command line switch, allows local users to overwrite arbitrary files via a symlink attack.
CVE-2003-0028
all versions
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries
CVE-2003-0064
all versions
The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert i
CVE-2002-2185
all versions
The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a t
CVE-2002-2093
all versions
The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to "Output Video", allows attackers to access a console
CVE-2002-1791
all versions
SGI IRIX 6.5 through 6.5.17 creates temporary desktop files with world-writable permissions, which allows local users to overwrite
CVE-2002-1787
all versions
Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5 through 6.5.17 allows local users to execute arbitrary code via unkn
CVE-2002-1786
all versions
SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core dumps, which allows local users to read the core dumps and possibl
CVE-2002-1584
all versions
Unknown vulnerability in the AUTH_DES authentication for RPC in Solaris 2.5.1, 2.6, and 7, SGI IRIX 6.5 to 6.5.19f, and possibly o
CVE-2002-1323
all versions
Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe:
CVE-2002-1318
all versions
Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary c
CVE-2002-1317
all versions
Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a
CVE-2002-1265
all versions
The Sun RPC functionality in multiple libc implementations does not provide a time-out mechanism when reading data from TCP connec
CVE-2002-0875
all versions
Vulnerability in FAM 2.6.8, 2.6.6, and other versions allows unprivileged users to obtain the names of files whose access is restr
CVE-2002-0632
all versions
Vulnerability in SGI BDS (Bulk Data Service) BDSPro 2.4 and earlier allows clients to read arbitrary files on a BDS server.
CVE-2002-0678
all versions
CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction
CVE-2002-0677
all versions
CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibl
CVE-2002-0652
all versions
xfsmd for IRIX 6.5 through 6.5.16 allows remote attackers to execute arbitrary code via shell metacharacters that are not properly
CVE-2002-0631
all versions
Unknown vulnerability in nveventd in NetVisualyzer on SGI IRIX 6.5 through 6.5.16 allows local users to write arbitrary files and
CVE-2002-0359
all versions
xfsmd for IRIX 6.5 through 6.5.16 uses weak authentication, which allows remote attackers to call dangerous RPC functions, includi
CVE-2002-0357
all versions
Unknown vulnerability in rpc.passwd in the nfs.sw.nis subsystem of SGI IRIX 6.5.15 and earlier allows local users to gain root pri
CVE-2002-0042
all versions
Vulnerability in the XFS file system for SGI IRIX before 6.5.12 allows local users to cause a denial of service (hang) by creating
CVE-2002-0356
all versions
Vulnerability in XFS filesystem reorganizer (fsr_xfs) in SGI IRIX 6.5.10 and earlier allows local users to gain root privileges by
CVE-2002-0355
all versions
netstat in SGI IRIX before 6.5.12 allows local users to determine the existence of files on the system, even if the users do not h
CVE-2002-0174
all versions
nsd on SGI IRIX before 6.5.11 allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the
CVE-2002-0213
all versions
xkas in Xinet K-AShare 0.011.01 for IRIX allows local users to read arbitrary files via a symlink attack on the VOLICON file, whic
CVE-2002-0173
all versions
Buffer overflow in cpr for the eoe.sw.cpr SGI Checkpoint-Restart Software package on SGI IRIX 6.5.10 and earlier may allow local u
CVE-2002-0172
all versions
/dev/ipfilter on SGI IRIX 6.5 is installed by /dev/MAKEDEV with insecure default permissions (644), which could allow a local user
CVE-2002-0041
all versions
Unknown vulnerability in Mail for SGI IRIX 6.5 through 6.5.15f, and possibly earlier versions, when running with the -R option, al
CVE-2002-0017
all versions
Buffer overflow in SNMP daemon (snmpd) on SGI IRIX 6.5 through 6.5.15m allows remote attackers to execute arbitrary code via an SN
CVE-2002-0040
all versions
Vulnerability in SGI IRIX 6.5.11 through 6.5.15f allows local users to cause privileged applications to dump core via the HOSTALIA
CVE-2002-0039
all versions
rpcbind in SGI IRIX 6.5 through 6.5.15f, and possibly earlier versions, allows remote attackers to cause a denial of service (cras
CVE-2002-0038
all versions
Vulnerability in the cache-limiting function of the unified name service daemon (nsd) in IRIX 6.5.4 through 6.5.11 allows remote a
CVE-2001-0797
all versions
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a l
CVE-2001-0801
<= 6.5.13f
lpstat in IRIX 6.5.13f and earlier allows local users to gain root privileges by specifying a Trojan Horse nettype shared library.
CVE-2001-0800
<= 6.5.13f
lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
CVE-2001-0799
<= 6.5.13f
Buffer overflows in lpsched in IRIX 6.5.13f and earlier allow remote attackers to execute arbitrary commands via a long argument.
CVE-2001-0796
<= 6.5.12f
SGI IRIX 6.5 through 6.5.12f and possibly earlier versions, and FreeBSD 3.0, allows remote attackers to cause a denial of service
CVE-2001-1456
all versions
Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execu
CVE-2000-1193
all versions
Performance Metrics Collector Daemon (PMCD) in Performance Copilot in IRIX 6.x allows remote attackers to cause a denial of servic
CVE-2001-0554
all versions
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary comma
CVE-2001-0485
all versions
Unknown vulnerability in netprint in IRIX 6.2, and possibly other versions, allows local users with lp privileges attacker to exec
CVE-2001-0331
<= 6.5.8
Buffer overflow in Embedded Support Partner (ESP) daemon (rpc.espd) in IRIX 6.5.8 and earlier allows remote attackers to execute a
CVE-2001-0249
>= 6.5 and <= 6.5.20
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and cal
9.8
CRITICAL
CVE-2001-0248
all versions
Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by creating a long pathname and cal
9.8
CRITICAL
CVE-2001-0247
all versions
Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containi
CVE-2000-0893
all versions
The presence of the Distributed GL Daemon (dgld) service on port 5232 on SGI IRIX systems allows remote attackers to identify the
CVE-2000-0844
all versions
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows loc
CVE-2000-0799
all versions
inpview in InPerson in SGI IRIX 5.3 through IRIX 6.5.10 allows local users to gain privileges via a symlink attack on the .ilmpAAA
CVE-2000-0798
all versions
The truncate function in IRIX 6.x does not properly check for privileges when the file is in the xfs file system, which allows loc
CVE-2000-0797
all versions
Buffer overflow in gr_osview in IRIX 6.2 and 6.3 allows local users to gain privileges via a long -D option.
CVE-2000-0796
all versions
Buffer overflow in dmplay in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long command line option.
CVE-2000-0795
all versions
Buffer overflow in lpstat in IRIX 6.2 and 6.3 allows local users to gain root privileges via a long -n option.
CVE-2000-0794
all versions
Buffer overflow in IRIX libgl.so library allows local users to gain root privileges via a long HOME variable to programs such as (
CVE-2000-0733
all versions
Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers
CVE-2000-0579
all versions
IRIX crontab creates temporary files with predictable file names and with the umask of the user, which could allow local users to
CVE-2000-0283
all versions
The default installation of IRIX Performance Copilot allows remote attackers to access sensitive system information via the pmcd d
CVE-2000-0245
all versions
Vulnerability in SGI IRIX objectserver daemon allows remote attackers to create user accounts.
CVE-2000-0207
all versions
SGI InfoSearch CGI program infosrch.cgi allows remote attackers to execute commands via shell metacharacters.
CVE-2000-1221
all versions
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolv
CVE-2000-1220
all versions
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by
CVE-2000-0013
all versions
IRIX soundplayer program allows local users to gain privileges by including shell metacharacters in a .wav file, which is executed
CVE-1999-1102
<= 5.2
lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary
CVE-1999-0949
all versions
Buffer overflow in canuum program for Canna input system allows local users to gain root privileges.
CVE-1999-0948
all versions
Buffer overflow in uum program for Canna input system allows local users to gain root privileges.
CVE-1999-0692
all versions
The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privil
CVE-1999-1485
all versions
nsd in IRIX 6.5 through 6.5.2 exports a virtual filesystem on a UDP port, which allows remote attackers to view files and cause a
CVE-1999-0765
all versions
SGI IRIX midikeys program allows local users to modify arbitrary files via a text editor.
CVE-1999-0413
all versions
A buffer overflow in the SGI X server allows local users to gain root access through the X server font path.
CVE-1999-0461
all versions
Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spo
CVE-1999-0215
all versions
Routed allows attackers to append data to files.
CVE-1999-1181
<= 6.4
Vulnerability in On-Line Customer Registration software for IRIX 6.2 through 6.4 allows local users to gain root privileges.
CVE-1999-1409
all versions
The at program in IRIX 6.2 and NetBSD 1.3.2 and earlier allows local users to read portions of arbitrary files by submitting the f
CVE-1999-0314
all versions
ioconfig on SGI IRIX 6.4 S2MP for Origin/Onyx2 allows local users to gain root access using relative pathnames.
CVE-1999-0313
all versions
disk_bandwidth on SGI IRIX 6.4 S2MP for Origin/Onyx2 allows local users to gain root access using relative pathnames.
CVE-1999-0329
all versions
SGI mediad program allows local users to gain root access.
CVE-1999-1492
all versions
Vulnerability in (1) diskperf and (2) diskalign in IRIX 6.4 allows local attacker to create arbitrary root owned files, leading to
CVE-1999-1039
all versions
Vulnerability in (1) diskalign and (2) diskperf in IRIX 6.4 patches 2291 and 2848 allow a local user to create root-owned files le
CVE-1999-0108
all versions
The printers program in IRIX has a buffer overflow that gives root access to local users.
CVE-1999-1501
all versions
(1) ipxchk and (2) ipxlink in SGI OS2 IRIX 6.3 does not properly clear the IFS environmental variable before executing system call
CVE-1999-1114
all versions
Buffer overflow in Korn Shell (ksh) suid_exec program on IRIX 6.x and earlier, and possibly other operating systems, allows local
CVE-1999-1040
all versions
Vulnerabilities in (1) ipxchk and (2) ipxlink in NetWare Client 1.0 on IRIX 6.3 and 6.4 allows local users to gain root access via
CVE-1999-0009
all versions
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
CVE-1999-0270
all versions
Directory traversal vulnerability in pfdispaly.cgi program (sometimes referred to as "pfdisplay") for SGI's Performer API Search T
CVE-1999-1183
all versions
System Manager sysmgr GUI in SGI IRIX 6.4 and 6.3 allows remote attackers to execute commands by providing a trojan horse (1) runt
CVE-1999-0003
all versions
Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).
CVE-1999-0960
all versions
IRIX cdplayer allows local users to create directories in arbitrary locations via a command line option.
CVE-1999-1272
all versions
Buffer overflows in CDROM Confidence Test program (cdrom) allow local users to gain root privileges.
CVE-1999-0125
all versions
Buffer overflow in SGI IRIX mailx program.
CVE-1999-0018
all versions
Buffer overflow in statd allows root privileges.
CVE-1999-0328
all versions
SGI permissions program allows local users to gain root privileges.
CVE-1999-0327
all versions
SGI syserr program allows local users to corrupt files.
CVE-1999-1131
all versions
Buffer overflow in OSF Distributed Computing Environment (DCE) security demon (secd) in IRIX 6.4 and earlier allows attackers to c
CVE-1999-1214
all versions
The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, wh
CVE-1999-0148
all versions
The handler CGI program in IRIX allows arbitrary command execution.
CVE-1999-1399
all versions
spaceball program in SpaceWare 7.3 v1.0 in IRIX 6.2 allows local users to gain root privileges by setting the HOSTNAME environment
CVE-1999-0524
all versions
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
4.0
MEDIUM
CVE-1999-0030
all versions
root privileges via buffer overflow in xlock command on SGI IRIX systems.
CVE-1999-0029
all versions
root privileges via buffer overflow in ordist command on SGI IRIX systems.
8.4
HIGH
CVE-1999-0028
all versions
root privileges via buffer overflow in login/scheme command on SGI IRIX systems.
CVE-1999-0027
all versions
root privileges via buffer overflow in eject command on SGI IRIX systems.
CVE-1999-0026
all versions
root privileges via buffer overflow in pset command on SGI IRIX systems.
CVE-1999-0025
all versions
root privileges via buffer overflow in df command on SGI IRIX systems.
CVE-1999-0059
all versions
IRIX fam service allows an attacker to obtain a list of all files on the server.
7.3
HIGH
CVE-1999-0195
all versions
Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed
CVE-1999-0033
all versions
Command execution in Sun systems via buffer overflow in the at program.
CVE-1999-0083
all versions
getcwd() file descriptor leak in FTP.
CVE-1999-0035
all versions
Race condition in signal handling routine in ftpd, allowing read/write arbitrary files.
5.4
MEDIUM
CVE-1999-1143
<= 6.0
Vulnerability in runtime linker program rld in SGI IRIX 6.x and earlier allows local users to gain privileges via setuid and setgi
CVE-1999-0036
all versions
IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files.
8.4
HIGH
CVE-1999-1232
all versions
Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modif
CVE-1999-1410
all versions
addnetpr in IRIX 5.3 and 6.2 allows local users to overwrite arbitrary files and possibly gain root privileges via a symlink attac
CVE-1999-1286
<= 6.2
addnetpr in SGI IRIX 6.2 and earlier allows local users to modify arbitrary files and possibly gain root access via a symlink atta
CVE-1999-1461
all versions
inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find and execute the ttsession progr
CVE-1999-1398
all versions
Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log log file, possibly via a syml
CVE-1999-1067
all versions
SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, whi
CVE-1999-0039
all versions
webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in th
7.3
HIGH
CVE-1999-1116
all versions
Vulnerability in runpriv in Indigo Magic System Administration subsystem of SGI IRIX 6.3 and 6.4 allows local users to gain root p
CVE-1999-0040
all versions
Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.
CVE-1999-0038
all versions
Buffer overflow in xlock program allows local users to execute commands as root.
8.4
HIGH
CVE-1999-0149
all versions
The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. (dot dot) attack.
CVE-1999-0959
all versions
IRIX startmidi program allows local users to modify arbitrary files via a symlink attack.
CVE-1999-0049
all versions
Csetup under IRIX allows arbitrary file creation or overwriting.
CVE-1999-0051
all versions
Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX.
CVE-1999-1120
<= 6.4
netprint in SGI IRIX 6.4 and earlier trusts the PATH environmental variable for finding and executing the disable program, which a
CVE-1999-1401
all versions
Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook a
CVE-1999-0044
all versions
fsdump command in IRIX allows local users to obtain root access by modifying sensitive files.
CVE-1999-1384
<= 6.3
Indigo Magic System Tour in the SGI system tour package (systour) for IRIX 5.x through 6.3 allows local users to gain root privile
CVE-1999-0032
all versions
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a l
CVE-1999-0234
all versions
Bash treats any character with a value of 255 as a command separator.
CVE-1999-0022
all versions
Local user gains root privileges via buffer overflow in rdist, via expstr() function.
7.8
HIGH
CVE-1999-0019
all versions
Delete or create a file via rpc.statd, due to invalid information.
CVE-1999-0078
all versions
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC
CVE-1999-1319
<= 6.1
Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain root privileges in certain conf
CVE-1999-0208
all versions
rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.
CVE-1999-0241
all versions
Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm.
CVE-1999-0073
all versions
Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the norma
CVE-1999-1243
<= 6.0.1
SGI Desktop Permissions Tool in IRIX 6.0.1 and earlier allows local users to modify permissions for arbitrary files and gain privi
CVE-1999-1022
all versions
serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls p
CVE-1999-1219
all versions
Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows local users to gain root privileg
CVE-1999-1494
all versions
colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files via the -text argument.
CVE-1999-1468
all versions
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IF
CVE-1999-1554
all versions
/usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which al
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin