Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
1997-05-21 CVE-1999-0037 Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail.
network
low complexity
redhat freebsd
7.5
1997-05-19 CVE-1999-1191 Unspecified vulnerability in SUN Solaris and Sunos
Buffer overflow in chkey in Solaris 2.5.1 and earlier allows local users to gain root privileges via a long command line argument.
local
low complexity
sun
7.2
1997-05-16 CVE-1999-1232 Unspecified vulnerability in SGI Irix 6.2
Untrusted search path vulnerability in day5datacopier in SGI IRIX 6.2 allows local users to execute arbitrary commands via a modified PATH environment variable that points to a malicious cp program.
local
low complexity
sgi
7.2
1997-05-15 CVE-1999-1141 Unspecified vulnerability in Ascom Timeplex Routers
Ascom Timeplex router allows remote attackers to obtain sensitive information or conduct unauthorized activities by entering debug mode through a sequence of CTRL-D characters.
network
low complexity
ascom
7.5
1997-05-14 CVE-1999-0962 Unspecified vulnerability in HP Hp-Ux 10/9
Buffer overflow in HPUX passwd command allows local users to gain root privileges via a command line option.
local
low complexity
hp
7.2
1997-05-13 CVE-1999-1158 Unspecified vulnerability in SUN Sunos
Buffer overflow in (1) pluggable authentication module (PAM) on Solaris 2.5.1 and 2.5 and (2) unix_scheme in Solaris 2.4 and 2.3 allows local users to gain root privileges via programs that use these modules such as passwd, yppasswd, and nispasswd.
local
low complexity
sun
7.2
1997-05-09 CVE-1999-1286 Unspecified vulnerability in SGI Irix
addnetpr in SGI IRIX 6.2 and earlier allows local users to modify arbitrary files and possibly gain root access via a symlink attack on a temporary file.
local
low complexity
sgi
7.2
1997-05-07 CVE-1999-1461 Unspecified vulnerability in SGI Irix
inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find and execute the ttsession program, which allows local users to obtain root access by modifying the PATH to point to a Trojan horse ttsession program.
local
low complexity
sgi
7.2
1997-05-06 CVE-1999-0039 Unspecified vulnerability in SGI Irix
webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter.
network
low complexity
sgi
7.5
1997-05-03 CVE-1999-1116 Unspecified vulnerability in SGI Irix 6.3/6.4
Vulnerability in runpriv in Indigo Magic System Administration subsystem of SGI IRIX 6.3 and 6.4 allows local users to gain root privileges.
local
low complexity
sgi
7.2