Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1.
CVSS Score
5.0
EPSS Score
0.001
Published
1997-07-01
Command execution in Sun systems via buffer overflow in the at program.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-06-12
getcwd() file descriptor leak in FTP.
CVSS Score
5.0
EPSS Score
0.007
Published
1997-06-11
Race condition in signal handling routine in ftpd, allowing read/write arbitrary files.
CVSS Score
5.1
EPSS Score
0.005
Published
1997-05-29
Vulnerability in runtime linker program rld in SGI IRIX 6.x and earlier allows local users to gain privileges via setuid and setgid programs.
CVSS Score
7.2
EPSS Score
0.001
Published
1997-05-28
IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files.
CVSS Score
8.4
EPSS Score
0.003
Published
1997-05-26
SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities.
CVSS Score
5.0
EPSS Score
0.006
Published
1997-05-07
Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log log file, possibly via a symlink attack.
CVSS Score
6.2
EPSS Score
0.001
Published
1997-05-07
inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find and execute the ttsession program, which allows local users to obtain root access by modifying the PATH to point to a Trojan horse ttsession program.
CVSS Score
7.2
EPSS Score
0.004
Published
1997-05-07
webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter.
CVSS Score
7.3
EPSS Score
0.321
Published
1997-05-06