Sgi Irix vulnerabilities

CVE-1999-0149 [HIGH] CVE-1999-0149: The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. ( The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. (dot dot) attack.

CVE-1999-0959 [HIGH] CVE-1999-0959: IRIX startmidi program allows local users to modify arbitrary files via a symlink attack. IRIX startmidi program allows local users to modify arbitrary files via a symlink attack.

CVE-1999-0049 [HIGH] CVE-1999-0049: Csetup under IRIX allows arbitrary file creation or overwriting. Csetup under IRIX allows arbitrary file creation or overwriting.

CVE-1999-0051 [HIGH] CVE-1999-0051: Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX.

CVE-1999-1120 [MEDIUM] CVE-1999-1120: netprint in SGI IRIX 6.4 and earlier trusts the PATH environmental variable for finding and executin netprint in SGI IRIX 6.4 and earlier trusts the PATH environmental variable for finding and executing the disable program, which allows local users to gain privileges.

CVE-1999-1401 [MEDIUM] CVE-1999-1401: Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook).

CVE-1999-0044 [HIGH] CVE-1999-0044: fsdump command in IRIX allows local users to obtain root access by modifying sensitive files. fsdump command in IRIX allows local users to obtain root access by modifying sensitive files.

CVE-1999-1384 [HIGH] CVE-1999-1384: Indigo Magic System Tour in the SGI system tour package (systour) for IRIX 5.x through 6.3 allows lo Indigo Magic System Tour in the SGI system tour package (systour) for IRIX 5.x through 6.3 allows local users to gain root privileges via a Trojan horse .exitops program, which is called by the inst command that is executed by the RemoveSystemTour program.

CVE-1999-0032 [HIGH] CVE-1999-0032: Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.

CVE-1999-0022 [HIGH] CWE-125 CVE-1999-0022: Local user gains root privileges via buffer overflow in rdist, via expstr() function. Local user gains root privileges via buffer overflow in rdist, via expstr() function.

CVE-1999-0019 [MEDIUM] CVE-1999-0019: Delete or create a file via rpc.statd, due to invalid information. Delete or create a file via rpc.statd, due to invalid information.

CVE-1999-0078 [LOW] CVE-1999-0078: pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

CVE-1999-1319 [CRITICAL] CVE-1999-1319: Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain r Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain root privileges in certain configurations.

CVE-1999-0208 [CRITICAL] CVE-1999-0208: rpc.ypupdated (NIS) allows remote users to execute arbitrary commands. rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.

CVE-1999-0073 [CRITICAL] CVE-1999-0073: Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing a Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.

CVE-1999-1243 [MEDIUM] CVE-1999-1243: SGI Desktop Permissions Tool in IRIX 6.0.1 and earlier allows local users to modify permissions for SGI Desktop Permissions Tool in IRIX 6.0.1 and earlier allows local users to modify permissions for arbitrary files and gain privileges.

CVE-1999-1022 [MEDIUM] CVE-1999-1022: serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variabl serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls program, which allows local users to gain root privileges via a Trojan horse ls program.

CVE-1999-1219 [HIGH] CVE-1999-1219: Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows loc Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows local users to gain root privileges, possibly through the clogin command.

CVE-1999-1494 [LOW] CVE-1999-1494: colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files via the -text argument.

CVE-1999-1468 [MEDIUM] CVE-1999-1468: rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.