Sgi Irix vulnerabilities
161 known vulnerabilities affecting sgi/irix.
Total CVEs
161
CISA KEV
0
Public exploits
61
Exploited in wild
3
Severity breakdown
CRITICAL29HIGH69MEDIUM39LOW24
Vulnerabilities
Page 7 of 9
CVE-1999-1501P4MEDIUMCVSS 4.6v6.31998-04-08
CVE-1999-1501 [MEDIUM] CVE-1999-1501: (1) ipxchk and (2) ipxlink in SGI OS2 IRIX 6.3 does not properly clear the IFS environmental variabl
(1) ipxchk and (2) ipxlink in SGI OS2 IRIX 6.3 does not properly clear the IFS environmental variable before executing system calls, which allows local users to execute arbitrary commands.
nvd
CVE-1999-1468P4MEDIUMCVSS 6.2v3.3v3.3.1+3 more1991-10-22
CVE-1999-1468 [MEDIUM] CVE-1999-1468: rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
nvd
CVE-2004-1889P4MEDIUMCVSS 5.0v6.5.20v6.5.20f+6 more2004-12-31
CVE-2004-1889 [MEDIUM] CVE-2004-1889: Unknown vulnerability in ftpd in SGI IRIX 6.5.20 through 6.5.23 allows remote attackers to cause a d
Unknown vulnerability in ftpd in SGI IRIX 6.5.20 through 6.5.23 allows remote attackers to cause a denial of service (hang) via a link failure with Microsoft Windows.
nvd
CVE-2002-0041P4MEDIUMCVSS 5.0v6.5v6.5.1+19 more2002-04-22
CVE-2002-0041 [MEDIUM] CVE-2002-0041: Unknown vulnerability in Mail for SGI IRIX 6.5 through 6.5.15f, and possibly earlier versions, when
Unknown vulnerability in Mail for SGI IRIX 6.5 through 6.5.15f, and possibly earlier versions, when running with the -R option, allows local and remote attackers to cause a core dump.
nvd
CVE-2001-0796P4MEDIUMCVSS 5.0≤ 6.5.12fv6.52001-12-06
CVE-2001-0796 [MEDIUM] CVE-2001-0796: SGI IRIX 6.5 through 6.5.12f and possibly earlier versions, and FreeBSD 3.0, allows remote attackers
SGI IRIX 6.5 through 6.5.12f and possibly earlier versions, and FreeBSD 3.0, allows remote attackers to cause a denial of service via a malformed IGMP multicast packet with a small response delay.
nvd
CVE-2003-0797P4MEDIUMCVSS 5.0v6.5v6.5.1+30 more2004-03-29
CVE-2003-0797 [MEDIUM] CVE-2003-0797: Unknown vulnerability in rpc.mountd in SGI IRIX 6.5 through 6.5.22 allows remote attackers to cause
Unknown vulnerability in rpc.mountd in SGI IRIX 6.5 through 6.5.22 allows remote attackers to cause a denial of service (process death) via unknown attack vectors.
nvd
CVE-2002-2185P4MEDIUMCVSS 4.9v6.5v6.5.1+22 more2002-12-31
CVE-2002-2185 [MEDIUM] CVE-2002-2185: The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an
The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.
nvd
CVE-2003-0573P4MEDIUMCVSS 5.0v6.5.1v6.5.2+24 more2003-08-18
CVE-2003-0573 [MEDIUM] CVE-2003-0573: The DNS callbacks in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, do not pe
The DNS callbacks in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, do not perform sufficient sanity checking, with unknown impact.
nvd
CVE-2003-0576P4MEDIUMCVSS 5.0v6.5v6.5.1+21 more2003-08-27
CVE-2003-0576 [MEDIUM] CVE-2003-0576: Unknown vulnerability in the NFS daemon (nfsd) in SGI IRIX 6.5.19f and earlier allows remote attacke
Unknown vulnerability in the NFS daemon (nfsd) in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of service (kernel panic) via certain packets that cause XDR decoding errors, a different vulnerability than CVE-2003-0619.
nvd
CVE-1999-1131P4MEDIUMCVSS 5.0v5.3v6.2+2 more1997-10-24
CVE-1999-1131 [MEDIUM] CVE-1999-1131: Buffer overflow in OSF Distributed Computing Environment (DCE) security demon (secd) in IRIX 6.4 and
Buffer overflow in OSF Distributed Computing Environment (DCE) security demon (secd) in IRIX 6.4 and earlier allows attackers to cause a denial of service via a long principal, group, or organization.
nvd
CVE-2003-0176P4MEDIUMCVSS 5.0v6.5.1v6.5.2+24 more2003-08-18
CVE-2003-0176 [MEDIUM] CVE-2003-0176: The Name Service Daemon (nsd), when running on an NIS master on SGI IRIX 6.5.x through 6.5.20f, and
The Name Service Daemon (nsd), when running on an NIS master on SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, allows remote attackers to cause a denial of service (crash) via a UDP port scan.
nvd
CVE-2004-1891P4MEDIUMCVSS 5.0v6.5.202004-12-31
CVE-2004-1891 [MEDIUM] CVE-2004-1891: The ftp_syslog function in ftpd in SGI IRIX 6.5.20 "doesn't work with anonymous FTP," which has an u
The ftp_syslog function in ftpd in SGI IRIX 6.5.20 "doesn't work with anonymous FTP," which has an unknown impact, possibly preventing the actions of anonymous users from being logged.
nvd
CVE-2002-1787P4MEDIUMCVSS 4.6v6.5v6.5.1+21 more2002-12-31
CVE-2002-1787 [MEDIUM] CVE-2002-1787: Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5 through 6.5.17 allows local users to e
Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5 through 6.5.17 allows local users to execute arbitrary code via unknown attack vectors.
nvd
CVE-2002-1516P4MEDIUMCVSS 4.6v6.5v6.5.1+21 more2003-04-02
CVE-2002-1516 [MEDIUM] CVE-2002-1516: rpcbind in SGI IRIX, when using the -w command line switch, allows local users to overwrite arbitrar
rpcbind in SGI IRIX, when using the -w command line switch, allows local users to overwrite arbitrary files via a symlink attack.
nvd
CVE-1999-0078P4LOWCVSS 1.9v5.31996-04-18
CVE-1999-0078 [LOW] CVE-1999-0078: pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.
nvd
CVE-1999-0019P4MEDIUMCVSS 5.0v6.11996-04-24
CVE-1999-0019 [MEDIUM] CVE-1999-0019: Delete or create a file via rpc.statd, due to invalid information.
Delete or create a file via rpc.statd, due to invalid information.
nvd
CVE-2003-0572P4MEDIUMCVSS 5.0v6.5.1v6.5.2+24 more2003-08-18
CVE-2003-0572 [MEDIUM] CVE-2003-0572: Unknown vulnerability in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, allow
Unknown vulnerability in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, allows attackers to cause a denial of service (memory consumption).
nvd
CVE-1999-1067P4MEDIUMCVSS 5.0v6.31997-05-07
CVE-1999-1067 [MEDIUM] CVE-1999-1067: SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive
SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities.
nvd
CVE-2002-0039P4MEDIUMCVSS 5.0v6.5v6.5.1+19 more2002-03-28
CVE-2002-0039 [MEDIUM] CVE-2002-0039: rpcbind in SGI IRIX 6.5 through 6.5.15f, and possibly earlier versions, allows remote attackers to c
rpcbind in SGI IRIX 6.5 through 6.5.15f, and possibly earlier versions, allows remote attackers to cause a denial of service (crash) via malformed RPC packets with invalid lengths.
nvd
CVE-2004-2001P4MEDIUMCVSS 4.6v6.5v6.5.1+26 more2004-05-05
CVE-2004-2001 [MEDIUM] CVE-2004-2001: ifconfig "-arp" in SGI IRIX 6.5 through 6.5.22m does not properly disable ARP requests from being se
ifconfig "-arp" in SGI IRIX 6.5 through 6.5.22m does not properly disable ARP requests from being sent or received.
nvd