Vulnerabilities > SGI > Irix > 6.5.12

DATE CVE VULNERABILITY TITLE RISK
2002-05-16 CVE-2002-0213 xkas in Xinet K-AShare 0.011.01 for IRIX allows local users to read arbitrary files via a symlink attack on the VOLICON file, which is copied to the .HSicon file in a shared directory.
local
low complexity
xinet sgi
2.1
2.1
2001-12-06 CVE-2001-0801 Unspecified vulnerability in SGI Irix
lpstat in IRIX 6.5.13f and earlier allows local users to gain root privileges by specifying a Trojan Horse nettype shared library.
local
low complexity
sgi
7.2
7.2
2001-12-06 CVE-2001-0800 Remote Command Execution vulnerability in IRIX 'lpsched'
lpsched in IRIX 6.5.13f and earlier allows remote attackers to execute arbitrary commands via shell metacharacters.
network
low complexity
sgi
critical
 10.0
10
2001-12-06 CVE-2001-0799 Remote Security vulnerability in IRIX
Buffer overflows in lpsched in IRIX 6.5.13f and earlier allow remote attackers to execute arbitrary commands via a long argument.
network
low complexity
sgi
critical
 10.0
10
2001-12-06 CVE-2001-0796 Denial of Service vulnerability in SGI IRIX IGMP Multicast Packet
SGI IRIX 6.5 through 6.5.12f and possibly earlier versions, and FreeBSD 3.0, allows remote attackers to cause a denial of service via a malformed IGMP multicast packet with a small response delay.
network
low complexity
sgi freebsd
5.0
5.0
2001-06-18 CVE-2001-0249 Incorrect Calculation of Buffer Size vulnerability in multiple products
Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings.
network
low complexity
hp oracle sgi CWE-131
critical
 9.8
9.8
2000-01-08 CVE-2000-1221 The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.
network
low complexity
sgi debian redhat
critical
 10.0
10
2000-01-08 CVE-2000-1220 The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.
network
low complexity
sgi redhat
critical
 10.0
10