Cray: >> Unicos >> 9.0.2.2 Security Vulnerabilities
Multiple buffer overflows in Cray UNICOS 9.0.2.2 might allow local users to gain privileges by (1) invoking /usr/bin/script with a long command line argument or (2) setting the -c option of /etc/nu to the name of a file containing a long line.
CVSS Score
7.2
EPSS Score
0.002
Published
2006-01-11
Format string vulnerability in /bin/ftp in UNICOS 9.0.2.2 allows local users to have an unknown impact via format string specifiers in the quote command. NOTE: because the program is not setuid and not normally called from remote programs, there may not be a typical attack vector for the issue that crosses privilege boundaries. Therefore this may not be a vulnerability.
CVSS Score
7.2
EPSS Score
0.001
Published
2006-01-11
Format string vulnerability in NQS daemon (nqsdaemon) in NQE 3.3.0.16 for CRAY UNICOS and SGI IRIX allows a local user to gain root privileges by using qsub to submit a batch job whose name contains formatting characters.
CVSS Score
7.2
EPSS Score
0.0
Published
2002-01-31
The default configuration of the Array Services daemon (arrayd) disables authentication, allowing remote users to gain root privileges.
CVSS Score
10.0
EPSS Score
0.005
Published
1999-07-19