Sgi: Security Vulnerabilities
Command execution in Sun systems via buffer overflow in the at program.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-06-12
getcwd() file descriptor leak in FTP.
CVSS Score
5.0
EPSS Score
0.007
Published
1997-06-11
Buffer overflow in suidperl (sperl), Perl 4.x and 5.x.
CVSS Score
7.2
EPSS Score
0.003
Published
1997-05-29
Race condition in signal handling routine in ftpd, allowing read/write arbitrary files.
CVSS Score
5.1
EPSS Score
0.005
Published
1997-05-29
Vulnerability in runtime linker program rld in SGI IRIX 6.x and earlier allows local users to gain privileges via setuid and setgid programs.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-05-28
IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files.
CVSS Score
8.4
EPSS Score
0.003
Published
1997-05-26
Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-05-16
addnetpr in SGI IRIX 6.2 and earlier allows local users to modify arbitrary files and possibly gain root access via a symlink attack on a temporary file.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-05-09
addnetpr in IRIX 5.3 and 6.2 allows local users to overwrite arbitrary files and possibly gain root privileges via a symlink attack on the printers temporary file.
CVSS Score
6.2
EPSS Score
0.004
Published
1997-05-09
SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities.
CVSS Score
5.0
EPSS Score
0.006
Published
1997-05-07