VYPR

Vendor CVEs

Sgi

All CVEs

263 total · sorted by risk
  • CVE-1999-1232May 16, 1997
    risk 0.00cvss epss 0.00

    Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program.

  • CVE-1999-1067May 7, 1997
    risk 0.00cvss epss 0.01

    SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities.

  • CVE-1999-1116May 3, 1997
    risk 0.00cvss epss 0.00

    Vulnerability in runpriv in Indigo Magic System Administration subsystem of SGI IRIX 6.3 and 6.4 allows local users to gain root privileges.

  • CVE-1999-0049Jan 8, 1997
    risk 0.00cvss epss 0.00

    Csetup under IRIX allows arbitrary file creation or overwriting.

  • CVE-1999-1401Dec 5, 1996
    risk 0.00cvss epss 0.00

    Vulnerability in Desktop searchbook program in IRIX 5.0.x through 6.2 sets insecure permissions for certain user files (iconbook and searchbook).

  • CVE-1999-0234Oct 8, 1996
    risk 0.00cvss epss 0.00

    Bash treats any character with a value of 255 as a command separator.

  • CVE-1999-0019Apr 24, 1996
    risk 0.00cvss epss 0.02

    Delete or create a file via rpc.statd, due to invalid information.

  • CVE-1999-0078Apr 18, 1996
    risk 0.00cvss epss 0.01

    pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

  • CVE-1999-1319Jan 3, 1996
    risk 0.00cvss epss 0.02

    Vulnerability in object server program in SGI IRIX 5.2 through 6.1 allows remote attackers to gain root privileges in certain configurations.

  • CVE-1999-0241Nov 1, 1995
    risk 0.00cvss epss 0.04

    Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm.

  • CVE-1999-0073Oct 13, 1995
    risk 0.00cvss epss 0.03

    Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.

  • CVE-1999-1468Oct 22, 1991
    risk 0.00cvss epss 0.00

    rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.

  • CVE-1999-1554Oct 31, 1990
    risk 0.00cvss epss 0.00

    /usr/sbin/Mail on SGI IRIX 3.3 and 3.3.1 does not properly set the group ID to the group ID of the user who started Mail, which allows local users to read the mail of other users.

Page 6 of 6