Irix

CVEs (182)

CVE	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2003-0174	Cri	0.64	9.8	0.00	May 12, 2003	The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.
CVE-2001-0249	Cri	0.64	9.8	0.05	Jun 18, 2001	Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings.
CVE-2001-0248	Cri	0.64	9.8	0.05	Jun 18, 2001	Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the STAT command, which uses glob to generate long strings.
CVE-1999-0029	Hig	0.58	8.4	0.00	Jul 16, 1997	root privileges via buffer overflow in ordist command on SGI IRIX systems.
CVE-1999-0036	Hig	0.58	8.4	0.01	May 26, 1997	IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files.
CVE-1999-0038	Hig	0.58	8.4	0.00	Apr 26, 1997	Buffer overflow in xlock program allows local users to execute commands as root.
CVE-1999-0039	Hig	0.52	7.3	0.21	May 6, 1997	webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter.
CVE-1999-0022	Hig	0.51	7.8	0.00	Jul 3, 1996	Local user gains root privileges via buffer overflow in rdist, via expstr() function.
CVE-1999-0059	Hig	0.48	7.3	0.01	Jul 14, 1997	IRIX fam service allows an attacker to obtain a list of all files on the server.
CVE-1999-0035	Med	0.35	5.4	0.00	May 29, 1997	Race condition in signal handling routine in ftpd, allowing read/write arbitrary files.
CVE-2001-0797		0.10	—	0.89	Dec 12, 2001	Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
CVE-1999-0003		0.10	—	0.91	Apr 1, 1998	Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).
CVE-2003-0694		0.09	—	0.76	Oct 6, 2003	The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
CVE-2002-1318		0.09	—	0.77	Dec 11, 2002	Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.
CVE-2001-0800		0.09	—	0.80	Dec 6, 2001	lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
CVE-1999-0009		0.09	—	0.80	Apr 8, 1998	Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
CVE-2002-1317		0.07	—	0.50	Dec 11, 2002	Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query.
CVE-1999-0208		0.07	—	0.45	Dec 12, 1995	rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.
CVE-2001-0247		0.06	—	0.35	Jun 18, 2001	Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3.
CVE-2010-1039		0.05	—	0.22	May 20, 2010	Format string vulnerability in the _msgout function in rpc.pcnfsd in IBM AIX 6.1, 5.3, and earlier; IBM VIOS 2.1, 1.5, and earlier; NFS/ONCplus B.11.31_09 and earlier on HP HP-UX B.11.11, B.11.23, and B.11.31; and SGI IRIX 6.5 allows remote attackers to execute arbitrary code via an RPC request containing format string specifiers in an invalid directory name.