Sgi Irix

The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could

CVE-2003-0174 9.8 - Critical - May 12, 2003

The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.

Origin Validation Error

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems

CVE-2001-0554 - August 14, 2001

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.

Classic Buffer Overflow

Buffer overflow in FTP server in HPUX 11

CVE-2001-0248 9.8 - Critical - June 18, 2001

Buffer overflow in FTP server in HPUX 11 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the STAT command, which uses glob to generate long strings.

Incorrect Calculation of Buffer Size

Heap overflow in FTP daemon in Solaris 8

CVE-2001-0249 9.8 - Critical - June 18, 2001

Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings.

Incorrect Calculation of Buffer Size

Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind

CVE-1999-0461 - January 28, 1999

Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address.

ICMP information such as (1) netmask and (2) timestamp is

CVE-1999-0524 - August 01, 1997

ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.

Information Disclosure

root privileges via buffer overflow in xlock command on SGI IRIX systems.

CVE-1999-0030 - July 16, 1997

root privileges via buffer overflow in xlock command on SGI IRIX systems.

root privileges via buffer overflow in ordist command on SGI IRIX systems.

CVE-1999-0029 - July 16, 1997

root privileges via buffer overflow in ordist command on SGI IRIX systems.

root privileges via buffer overflow in login/scheme command on SGI IRIX systems.

CVE-1999-0028 - July 16, 1997

root privileges via buffer overflow in login/scheme command on SGI IRIX systems.

root privileges via buffer overflow in eject command on SGI IRIX systems.

CVE-1999-0027 - July 16, 1997

root privileges via buffer overflow in eject command on SGI IRIX systems.

Buffer Overflow

root privileges via buffer overflow in pset command on SGI IRIX systems.

CVE-1999-0026 - July 16, 1997

root privileges via buffer overflow in pset command on SGI IRIX systems.

IRIX fam service allows an attacker to obtain a list of all files on the server.

CVE-1999-0059 - July 14, 1997

IRIX fam service allows an attacker to obtain a list of all files on the server.

Denial of service in RPC portmapper

CVE-1999-0195 - July 01, 1997

Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1.

Command execution in Sun systems

CVE-1999-0033 - June 12, 1997

Command execution in Sun systems via buffer overflow in the at program.

getcwd() file descriptor leak in FTP.

CVE-1999-0083 - June 11, 1997

getcwd() file descriptor leak in FTP.

Race condition in signal handling routine in ftpd

CVE-1999-0035 - May 29, 1997

Race condition in signal handling routine in ftpd, allowing read/write arbitrary files.

IRIX login program with a nonzero LOCKOUT parameter

CVE-1999-0036 - May 26, 1997

IRIX login program with a nonzero LOCKOUT parameter allows creation or damage to files.

Buffer overflow in Xt library of X Windowing System

CVE-1999-0040 - May 01, 1997

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

Buffer overflow in xlock program

CVE-1999-0038 - April 26, 1997

Buffer overflow in xlock program allows local users to execute commands as root.

Csetup under IRIX allows arbitrary file creation or overwriting.

CVE-1999-0049 - January 08, 1997

Csetup under IRIX allows arbitrary file creation or overwriting.

Arbitrary file creation and program execution using FLEXlm LicenseManager

CVE-1999-0051 - January 06, 1997

Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX.

Local user gains root privileges

CVE-1999-0022 - July 03, 1996

Local user gains root privileges via buffer overflow in rdist, via expstr() function.

pcnfsd (aka rpc.pcnfsd)

CVE-1999-0078 - April 18, 1996

pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

rpc.ypupdated (NIS)

CVE-1999-0208 - December 12, 1995

rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.

Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g

CVE-1999-0241 - November 01, 1995

Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm.

Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH

CVE-1999-0073 - October 13, 1995

Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.