VYPR
Get started
← All vendors
Vendor

Sgi

Sign in to watch
Products
17
CVEs
253
Across products
2,370
Status
Private

Products

17

Recent CVEs

253
CVESevRiskCVSSEPSSKEVPublishedDescription
CVE-2003-0174Cri0.649.80.00May 12, 2003The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.
CVE-2001-0249Cri0.649.80.05Jun 18, 2001Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings.
CVE-2001-0248Cri0.649.80.05Jun 18, 2001Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the STAT command, which uses glob to generate long strings.
CVE-1999-0029Hig0.588.40.00Jul 16, 1997root privileges via buffer overflow in ordist command on SGI IRIX systems.
CVE-1999-0036Hig0.588.40.01May 26, 1997IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files.
CVE-1999-0038Hig0.588.40.00Apr 26, 1997Buffer overflow in xlock program allows local users to execute commands as root.
CVE-1999-0039Hig0.527.30.21May 6, 1997webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter.
CVE-1999-0022Hig0.517.80.00Jul 3, 1996Local user gains root privileges via buffer overflow in rdist, via expstr() function.
CVE-2004-0079Hig0.497.50.02Nov 23, 2004The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
CVE-1999-0059Hig0.487.30.01Jul 14, 1997IRIX fam service allows an attacker to obtain a list of all files on the server.
CVE-1999-0035Med0.355.40.00May 29, 1997Race condition in signal handling routine in ftpd, allowing read/write arbitrary files.
CVE-2001-07970.100.89Dec 12, 2001Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
CVE-1999-00030.100.91Apr 1, 1998Execute commands as root via buffer overflow in Tooltalk database server (rpc.ttdbserverd).
CVE-2003-06940.090.76Oct 6, 2003The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
CVE-2002-13180.090.77Dec 11, 2002Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an encrypted password that causes the overflow during decryption in which a DOS codepage string is converted to a little-endian UCS2 unicode string.
CVE-2001-08000.090.80Dec 6, 2001lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
CVE-1999-00090.090.80Apr 8, 1998Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
CVE-2004-01040.070.51Mar 3, 2004Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.
CVE-2002-13170.070.50Dec 11, 2002Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query.
CVE-1999-02080.070.45Dec 12, 1995rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.