The asynchronous I/O facility in 4.4 BSD kernel does not check user credentials when setting the recipient of I/O notification, which allows local users to cause a denial of service by using certain ioctl and fcntl calls to cause the signal to be sent to an arbitrary process ID.
CVSS Score
2.1
EPSS Score
0.001
Published
1997-09-15
The handler CGI program in IRIX allows arbitrary command execution.
CVSS Score
7.5
EPSS Score
0.07
Published
1997-09-01
spaceball program in SpaceWare 7.3 v1.0 in IRIX 6.2 allows local users to gain root privileges by setting the HOSTNAME environmental variable to contain the commands to be executed.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-08-20
root privileges via buffer overflow in df command on SGI IRIX systems.
CVSS Score
7.2
EPSS Score
0.014
Published
1997-07-16
root privileges via buffer overflow in pset command on SGI IRIX systems.
CVSS Score
4.6
EPSS Score
0.005
Published
1997-07-16
root privileges via buffer overflow in eject command on SGI IRIX systems.
CVSS Score
7.2
EPSS Score
0.005
Published
1997-07-16
root privileges via buffer overflow in login/scheme command on SGI IRIX systems.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-07-16
root privileges via buffer overflow in ordist command on SGI IRIX systems.
CVSS Score
8.4
EPSS Score
0.004
Published
1997-07-16
root privileges via buffer overflow in xlock command on SGI IRIX systems.
CVSS Score
7.2
EPSS Score
0.003
Published
1997-07-16
IRIX fam service allows an attacker to obtain a list of all files on the server.
CVSS Score
7.3
EPSS Score
0.007
Published
1997-07-14