Vulnerabilities > SGI > Irix > 6.5.3f
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-06-18 | CVE-2001-0249 | Incorrect Calculation of Buffer Size vulnerability in multiple products Heap overflow in FTP daemon in Solaris 8 allows remote attackers to execute arbitrary commands by creating a long pathname and calling the LIST command, which uses glob to generate long strings. | 9.8 |
| 2001-06-18 | CVE-2001-0247 | Buffer Overflow vulnerability in Multiple Vendor BSD ftpd glob() Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3. | 10.0 |
| 2000-11-14 | CVE-2000-0844 | Permissions, Privileges, and Access Controls vulnerability in multiple products Some functions that implement the locale subsystem on Unix do not properly cleanse user-injected format strings, which allows local attackers to execute arbitrary commands via functions such as gettext and catopen. | 10.0 |
| 2000-10-20 | CVE-2000-0733 | Unspecified vulnerability in SGI Irix Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request. | 10.0 |
| 2000-04-12 | CVE-2000-0283 | Unspecified vulnerability in SGI Irix The default installation of IRIX Performance Copilot allows remote attackers to access sensitive system information via the pmcd daemon. | 6.4 |
| 2000-03-01 | CVE-2000-0207 | Unspecified vulnerability in SGI Infosearch and Irix SGI InfoSearch CGI program infosrch.cgi allows remote attackers to execute commands via shell metacharacters. | 7.5 |