Vendor CVEs
Sgi
All CVEs
263 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-1232 | 0.00 | — | 0.00 | May 16, 1997 | Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program. | |||
| CVE-1999-1067 | 0.00 | — | 0.01 | May 7, 1997 | SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities. | |||
| CVE-1999-1116 | 0.00 | — | 0.00 | May 3, 1997 | Vulnerability in runpriv in Indigo Magic System Administration subsystem of SGI IRIX 6.3 and 6.4 allows local users to gain root privileges. | |||
| CVE-1999-0049 | 0.00 | — | 0.00 | Jan 8, 1997 | Csetup under IRIX allows arbitrary file creation or overwriting. | |||
| CVE-1999-1401 | 0.00 | — | 0.00 | Dec 5, 1996 | Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook). | |||
| CVE-1999-0234 | 0.00 | — | 0.00 | Oct 8, 1996 | Bash treats any character with a value of 255 as a command separator. | |||
| CVE-1999-0019 | 0.00 | — | 0.02 | Apr 24, 1996 | Delete or create a file via rpc.statd, due to invalid information. | |||
| CVE-1999-0078 | 0.00 | — | 0.01 | Apr 18, 1996 | pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call. | |||
| CVE-1999-1319 | 0.00 | — | 0.02 | Jan 3, 1996 | Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain root privileges in certain configurations. | |||
| CVE-1999-0241 | 0.00 | — | 0.04 | Nov 1, 1995 | Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm. | |||
| CVE-1999-0073 | 0.00 | — | 0.03 | Oct 13, 1995 | Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access. | |||
| CVE-1999-1468 | 0.00 | — | 0.00 | Oct 22, 1991 | rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable. | |||
| CVE-1999-1554 | 0.00 | — | 0.00 | Oct 31, 1990 | /usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to read the mail of other users. |
- CVE-1999-1232May 16, 1997risk 0.00cvss —epss 0.00
Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program.
- CVE-1999-1067May 7, 1997risk 0.00cvss —epss 0.01
SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities.
- CVE-1999-1116May 3, 1997risk 0.00cvss —epss 0.00
Vulnerability in runpriv in Indigo Magic System Administration subsystem of SGI IRIX 6.3 and 6.4 allows local users to gain root privileges.
- CVE-1999-0049Jan 8, 1997risk 0.00cvss —epss 0.00
Csetup under IRIX allows arbitrary file creation or overwriting.
- CVE-1999-1401Dec 5, 1996risk 0.00cvss —epss 0.00
Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook).
- CVE-1999-0234Oct 8, 1996risk 0.00cvss —epss 0.00
Bash treats any character with a value of 255 as a command separator.
- CVE-1999-0019Apr 24, 1996risk 0.00cvss —epss 0.02
Delete or create a file via rpc.statd, due to invalid information.
- CVE-1999-0078Apr 18, 1996risk 0.00cvss —epss 0.01
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.
- CVE-1999-1319Jan 3, 1996risk 0.00cvss —epss 0.02
Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain root privileges in certain configurations.
- CVE-1999-0241Nov 1, 1995risk 0.00cvss —epss 0.04
Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm.
- CVE-1999-0073Oct 13, 1995risk 0.00cvss —epss 0.03
Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.
- CVE-1999-1468Oct 22, 1991risk 0.00cvss —epss 0.00
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
- CVE-1999-1554Oct 31, 1990risk 0.00cvss —epss 0.00
/usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to read the mail of other users.
Page 6 of 6