Sgi Irix

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems

CVE-2001-0554 - August 14, 2001

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.

Classic Buffer Overflow

Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind

CVE-1999-0461 - January 28, 1999

Versions of rpcbind including Linux, IRIX, and Wietse Venema's rpcbind allow a remote attacker to insert and delete entries by spoofing a source address.

ICMP information such as (1) netmask and (2) timestamp is

CVE-1999-0524 - August 01, 1997

ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.

Information Disclosure

root privileges via buffer overflow in login/scheme command on SGI IRIX systems.

CVE-1999-0028 - July 16, 1997

root privileges via buffer overflow in login/scheme command on SGI IRIX systems.

root privileges via buffer overflow in pset command on SGI IRIX systems.

CVE-1999-0026 - July 16, 1997

root privileges via buffer overflow in pset command on SGI IRIX systems.

root privileges via buffer overflow in xlock command on SGI IRIX systems.

CVE-1999-0030 - July 16, 1997

root privileges via buffer overflow in xlock command on SGI IRIX systems.

root privileges via buffer overflow in ordist command on SGI IRIX systems.

CVE-1999-0029 - July 16, 1997

root privileges via buffer overflow in ordist command on SGI IRIX systems.

root privileges via buffer overflow in eject command on SGI IRIX systems.

CVE-1999-0027 - July 16, 1997

root privileges via buffer overflow in eject command on SGI IRIX systems.

Buffer Overflow

Denial of service in RPC portmapper

CVE-1999-0195 - July 01, 1997

Denial of service in RPC portmapper allows attackers to register or unregister RPC services or spoof RPC services using a spoofed source IP address such as 127.0.0.1.

Command execution in Sun systems

CVE-1999-0033 - June 12, 1997

Command execution in Sun systems via buffer overflow in the at program.

getcwd() file descriptor leak in FTP.

CVE-1999-0083 - June 11, 1997

getcwd() file descriptor leak in FTP.

Race condition in signal handling routine in ftpd

CVE-1999-0035 - May 29, 1997

Race condition in signal handling routine in ftpd, allowing read/write arbitrary files.

Buffer overflow in Xt library of X Windowing System

CVE-1999-0040 - May 01, 1997

Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges.

Buffer overflow in xlock program

CVE-1999-0038 - April 26, 1997

Buffer overflow in xlock program allows local users to execute commands as root.

Csetup under IRIX allows arbitrary file creation or overwriting.

CVE-1999-0049 - January 08, 1997

Csetup under IRIX allows arbitrary file creation or overwriting.

Arbitrary file creation and program execution using FLEXlm LicenseManager

CVE-1999-0051 - January 06, 1997

Arbitrary file creation and program execution using FLEXlm LicenseManager, from versions 4.0 to 5.0, in IRIX.

pcnfsd (aka rpc.pcnfsd)

CVE-1999-0078 - April 18, 1996

pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

rpc.ypupdated (NIS)

CVE-1999-0208 - December 12, 1995

rpc.ypupdated (NIS) allows remote users to execute arbitrary commands.

Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g

CVE-1999-0241 - November 01, 1995

Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm.

Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH

CVE-1999-0073 - October 13, 1995

Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.