Sgi: Security Vulnerabilities
spaceball program in SpaceWare 7.3 v1.0 in IRIX 6.2 allows local users to gain root privileges by setting the HOSTNAME environmental variable to contain the commands to be executed.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-08-20
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
CVSS Score
2.1
EPSS Score
0.007
Published
1997-08-01
root privileges via buffer overflow in df command on SGI IRIX systems.
CVSS Score
7.2
EPSS Score
0.014
Published
1997-07-16
root privileges via buffer overflow in pset command on SGI IRIX systems.
CVSS Score
4.6
EPSS Score
0.005
Published
1997-07-16
root privileges via buffer overflow in eject command on SGI IRIX systems.
CVSS Score
7.2
EPSS Score
0.005
Published
1997-07-16
root privileges via buffer overflow in login/scheme command on SGI IRIX systems.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-07-16
root privileges via buffer overflow in ordist command on SGI IRIX systems.
CVSS Score
8.4
EPSS Score
0.004
Published
1997-07-16
root privileges via buffer overflow in xlock command on SGI IRIX systems.
CVSS Score
7.2
EPSS Score
0.003
Published
1997-07-16
IRIX fam service allows an attacker to obtain a list of all files on the server.
CVSS Score
7.3
EPSS Score
0.007
Published
1997-07-14
Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1.
CVSS Score
5.0
EPSS Score
0.001
Published
1997-07-01