Sgi Irix vulnerabilities
161 known vulnerabilities affecting sgi/irix.
Total CVEs
161
CISA KEV
0
Public exploits
61
Exploited in wild
3
Severity breakdown
CRITICAL29HIGH69MEDIUM39LOW24
Vulnerabilities
Page 1 of 9
CVE-2001-0797P2CRITICALCVSS 10.0ExploitedPoCv3.2v3.3+3 more2001-12-12
CVE-2001-0797 [CRITICAL] CVE-2001-0797: Buffer overflow in login in various System V based operating systems allows remote attackers to exec
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
nvd
CVE-2003-0694P2CRITICALCVSS 10.0ExploitedPoCv6.5.15v6.5.16+10 more2003-10-06
CVE-2003-0694 [CRITICAL] CVE-2003-0694: The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer
The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
nvd
CVE-2001-0554P2CRITICALCVSS 10.0ExploitedPoCv6.52001-08-14
CVE-2001-0554 [CRITICAL] CWE-120 CVE-2001-0554: Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attack
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.
nvd
CVE-2010-1039P2CRITICALCVSS 10.0PoCv6.52010-05-20
CVE-2010-1039 [CRITICAL] CWE-134 CVE-2010-1039: Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier;
Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid direct
nvd
CVE-2002-1318P3CRITICALCVSS 10.0PoCv6.5v6.5.1+17 more2002-12-11
CVE-2002-1318 [CRITICAL] CVE-2002-1318: Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service an
Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.
nvd
CVE-2001-0800P3CRITICALCVSS 10.0PoC≤ 6.5.13f2001-12-06
CVE-2001-0800 [CRITICAL] CVE-2001-0800: lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell
lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
nvd
CVE-1999-0003P3CRITICALCVSS 10.0PoCv5.2v5.3+5 more1998-04-01
CVE-1999-0003 [CRITICAL] CVE-1999-0003: Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).
Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).
nvd
CVE-2001-0247P3CRITICALCVSS 10.0PoCv6.1v6.5.1+11 more2001-06-18
CVE-2001-0247 [CRITICAL] CVE-2001-0247: Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via
Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3.
nvd
CVE-2000-1220P3CRITICALCVSS 10.0PoCv6.5v6.5.1+22 more2000-01-08
CVE-2000-1220 [CRITICAL] CVE-2000-1220: The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local us
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.
nvd
CVE-2002-1317P3HIGHCVSS 7.5PoCv6.5v6.5.1+12 more2002-12-11
CVE-2002-1317 [HIGH] CVE-2002-1317: Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allow
Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query.
nvd
CVE-1999-0009P3CRITICALCVSS 10.0PoCv3.2v3.3+30 more1998-04-08
CVE-1999-0009 [CRITICAL] CVE-1999-0009: Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
nvd
CVE-1999-0208P3CRITICALCVSS 10.0PoCv3v4+3 more1995-12-12
CVE-1999-0208 [CRITICAL] CVE-1999-0208: rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.
rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.
nvd
CVE-2000-0733P3CRITICALCVSS 10.0PoCv5.2v5.3+16 more2000-10-20
CVE-2000-0733 [CRITICAL] CVE-2000-0733: Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings,
Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request.
nvd
CVE-2000-1221P3CRITICALCVSS 10.0PoCv6.5v6.5.1+22 more2000-01-08
CVE-2000-1221 [CRITICAL] CVE-2000-1221: The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates b
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.
nvd
CVE-2000-0844P3CRITICALCVSS 10.0PoCv6.2v6.3+11 more2000-11-14
CVE-2000-0844 [CRITICAL] CWE-264 CVE-2000-0844: Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected fo
Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen.
nvd
CVE-1999-0039P3HIGHCVSS 7.3PoCv5.0v5.1+5 more1997-05-06
CVE-1999-0039 [HIGH] CWE-77 CVE-1999-0039: webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands
webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter.
nvd
CVE-2002-0652P3HIGHCVSS 7.5PoCv6.5v6.5.1+15 more2002-07-03
CVE-2002-0652 [HIGH] CVE-2002-0652: xfsmd for IRIX 6.5 through 6.5.16 allows remote attackers to execute arbitrary code via shell metach
xfsmd for IRIX 6.5 through 6.5.16 allows remote attackers to execute arbitrary code via shell metacharacters that are not properly filtered from several calls to the popen() function, such as export_fs().
nvd
CVE-2000-0245P3CRITICALCVSS 10.0PoCv5.2v5.3+4 more2000-03-27
CVE-2000-0245 [CRITICAL] CVE-2000-0245: Vulnerability in SGI IRIX objectserver daemon allows remote attackers to create user accounts.
Vulnerability in SGI IRIX objectserver daemon allows remote attackers to create user accounts.
nvd
CVE-2000-0207P3HIGHCVSS 7.5PoCv6.5v6.5.1+7 more2000-03-01
CVE-2000-0207 [HIGH] CVE-2000-0207: SGI InfoSearch CGI program infosrch.cgi allows remote attackers to execute commands via shell metach
SGI InfoSearch CGI program infosrch.cgi allows remote attackers to execute commands via shell metacharacters.
nvd
CVE-1999-0148P3HIGHCVSS 7.5PoCv5.3v6.2+2 more1997-09-01
CVE-1999-0148 [HIGH] CVE-1999-0148: The handler CGI program in IRIX allows arbitrary command execution.
The handler CGI program in IRIX allows arbitrary command execution.
nvd
1 / 9Next →