SgiCVEs & Vulnerabilities

259 CVEs affecting Sgi products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

irix 2,246propack 86performance co-pilot 81samba 15mailx 9license oeo 3freeware 3mipspro compilers 2
CVE-2004-0231LOW

Multiple vulnerabilities in Midnight Commander (mc) before 4.6.0, with unknown impact, related to "Insecure temporary file and directory creations."

18 Aug 2004
2.1
CVSS
CVE-2004-0232MEDIUM

Multiple format string vulnerabilities in Midnight Commander (mc) before 4.6.0 may allow attackers to cause a denial of service or execute arbitrary code.

18 Aug 2004
5.0
CVSS
CVE-2004-0234CRITICAL

Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA archive, which triggers the overflow when testing or extracting the archive.

18 Aug 2004
10.0
CVSS
CVE-2004-0235MEDIUM

Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").

18 Aug 2004
6.4
CVSS
CVE-2004-0504MEDIUM

Ethereal 0.10.3 allows remote attackers to cause a denial of service (crash) via certain SIP messages between Hotsip servers and clients.

18 Aug 2004
5.0
CVSS
CVE-2004-0505MEDIUM

The AIM dissector in Ethereal 0.10.3 allows remote attackers to cause a denial of service (assert error) via unknown attack vectors.

18 Aug 2004
5.0
CVSS
CVE-2004-0506MEDIUM

The SPNEGO dissector in Ethereal 0.9.8 to 0.10.3 allows remote attackers to cause a denial of service (crash) via unknown attack vectors that cause a null pointer dereference.

18 Aug 2004
5.0
CVSS
CVE-2004-0507CRITICAL

Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.

18 Aug 2004
10.0
CVSS
CVE-2004-0521CRITICAL

SQL injection vulnerability in SquirrelMail before 1.4.3 RC1 allows remote attackers to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.

18 Aug 2004
10.0
CVSS
CVE-2004-0523CRITICAL

Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.

18 Aug 2004
10.0
CVSS
CVE-2004-0233LOWpoc

Utempter allows device names that contain .. (dot dot) directory traversal sequences, which allows local users to overwrite arbitrary files via a symlink attack on device names in combination with an application that trusts the utmp or wtmp files.

18 Aug 2004
2.1
CVSS
CVE-2004-0520MEDIUMpoc

Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using read_body.php.

18 Aug 2004
6.8
CVSS
CVE-2004-0519MEDIUMpoc

Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple attack vectors, including the mailbox parameter in compose.php.

18 Aug 2004
6.8
CVSS
CVE-2004-0135HIGH

The syssgi SGI_IOPROBE system call in IRIX 6.5.20 through 6.5.24 allows local users to gain privileges by reading and writing to kernel memory.

6 Aug 2004
7.2
CVSS
CVE-2004-0136LOW

The mapelf32exec function call in IRIX 6.5.20 through 6.5.24 allows local users to cause a denial of service (system crash) via a "corrupted binary."

6 Aug 2004
2.1
CVSS
CVE-2004-0137LOW

Unknown vulnerability in init for IRIX 6.5.20 through 6.5.24 allows local users to cause a denial of service (system panic) as a result of "page invalidation issues."

6 Aug 2004
2.1
CVSS
CVE-2004-0414CRITICAL

CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle malformed "Entry" lines, which prevents a NULL terminator from being used and may lead to a denial of service (crash), modification of critical program data, or arbitrary code execution.

6 Aug 2004
10.0
CVSS
CVE-2004-0417MEDIUM

Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to cause a server crash, which could cause temporary data to remain undeleted and consume disk space.

6 Aug 2004
5.0
CVSS
CVE-2004-0418CRITICAL

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow remote attackers to perform an "out-of-bounds" write for a single byte to execute arbitrary code or modify critical program data.

6 Aug 2004
10.0
CVSS
CVE-2004-0492CRITICAL

Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied.

6 Aug 2004
10.0
CVSS
CVE-2004-0416CRITICALpoc

Double free vulnerability for the error_prog_name string in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, may allow remote attackers to execute arbitrary code.

6 Aug 2004
10.0
CVSS
CVE-2004-0639MEDIUMpoc

Multiple cross-site scripting (XSS) vulnerabilities in Squirrelmail 1.2.10 and earlier allow remote attackers to inject arbitrary HTML or script via (1) the $mailer variable in read_body.php, (2) the $senderNames_part variable in mailbox_display.php, and possibly other vectors including (3) the $event_title variable or (4) the $event_text variable.

6 Aug 2004
6.8
CVSS
CVE-2004-0483MEDIUM

Unknown vulnerability in rpc.mountd for SGI IRIX 6.5.24 allows remote attackers to cause a denial of service (infinite loop) via certain RPC requests.

7 Jul 2004
5.0
CVSS
CVE-2004-0424HIGHpoc

Integer overflow in the ip_setsockopt function in Linux kernel 2.4.22 through 2.4.25 and 2.6.1 through 2.6.3 allows local users to cause a denial of service (crash) or execute arbitrary code via the MCAST_MSFILTER socket option.

7 Jul 2004
7.2
CVSS
CVE-2004-2001MEDIUM

ifconfig "-arp" in SGI IRIX 6.5 through 6.5.22m does not properly disable ARP requests from being sent or received.

5 May 2004
4.6
CVSS
CVE-2004-2002MEDIUM

Unknown vulnerability in SGI IRIX 6.5 through 6.5.22m allows remote attackers to cause a denial of service via a certain UDP packet.

5 May 2004
5.0
CVSS
CVE-2004-0107MEDIUM

The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.

15 Apr 2004
4.6
CVSS
CVE-2004-0108MEDIUM

The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107.

15 Apr 2004
4.6
CVSS
CVE-2004-0111MEDIUM

gdk-pixbuf before 0.20 allows attackers to cause a denial of service (crash) via a malformed bitmap (BMP) file.

15 Apr 2004
5.0
CVSS
CVE-2004-0148HIGH

wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory, which causes wu-ftpd to use the root directory instead.

15 Apr 2004
7.2
CVSS
CVE-2004-1890MEDIUM

Unknown vulnerability in ftpd in SGI IRIX 6.5.20 through 6.5.23 allows remote attackers to cause a denial of service (hang) via the PORT mode.

2 Apr 2004
5.0
CVSS
CVE-2003-0796HIGH

Unknown vulnerability in rpc.mountd SGI IRIX 6.5.18 through 6.5.22 allows remote attackers to mount from unprivileged ports even with the -n option disabled.

29 Mar 2004
7.5
CVSS
CVE-2003-0797MEDIUM

Unknown vulnerability in rpc.mountd in SGI IRIX 6.5 through 6.5.22 allows remote attackers to cause a denial of service (process death) via unknown attack vectors.

29 Mar 2004
5.0
CVSS
CVE-2004-0110HIGHpoc

Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL.

15 Mar 2004
7.5
CVSS
CVE-2003-0991MEDIUM

Unknown vulnerability in the mail command handler in Mailman before 2.0.14 allows remote attackers to cause a denial of service (crash) via malformed e-mail commands.

3 Mar 2004
5.0
CVSS
CVE-2004-0105HIGH

Multiple buffer overflows in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.

3 Mar 2004
7.5
CVSS
CVE-2004-0104HIGHpoc

Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.

3 Mar 2004
7.5
CVSS
CVE-2003-0175LOW

SGI IRIX before 6.5.21 allows local users to cause a denial of service (kernel panic) via a certain call to the PIOCSWATCH ioctl.

3 Feb 2004
2.1
CVSS
CVE-2003-0859MEDIUM

The getifaddrs function in GNU libc (glibc) 2.2.4 and earlier allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface.

15 Dec 2003
4.9
CVSS
CVE-2003-0795MEDIUMpoc

The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub-negotiation is taking place when processing the SE marker, which allows remote attackers to cause a denial of service (crash) via a malformed telnet command to the telnet CLI port, which may trigger a null dereference.

15 Dec 2003
5.0
CVSS
CVE-2003-0683HIGH

NFS in SGI 6.5.21m and 6.5.21f does not perform access checks in certain configurations when an /etc/exports entry uses wildcards without any hostnames or groups, which could allow attackers to bypass intended restrictions.

3 Nov 2003
7.5
CVSS
CVE-2003-0688MEDIUM

The DNS map code in Sendmail 8.12.8 and earlier, when using the "enhdnsbl" feature, does not properly initialize certain data structures, which allows remote attackers to cause a denial of service (process crash) via an invalid DNS response that causes Sendmail to free incorrect data.

20 Oct 2003
5.0
CVSS
CVE-2003-0680HIGH

Unknown vulnerability in NFS for SGI IRIX 6.5.21 and earlier may allow an NFS client to bypass read-only restrictions.

6 Oct 2003
7.5
CVSS
CVE-2003-0694CRITICAL

The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.

6 Oct 2003
10.0
CVSS
CVE-2003-0575CRITICAL

Heap-based buffer overflow in the name services daemon (nsd) in SGI IRIX 6.5.x through 6.5.21f, and possibly earlier versions, allows attackers to gain root privileges via the AUTH_UNIX gid list.

27 Aug 2003
10.0
CVSS
CVE-2003-0576MEDIUM

Unknown vulnerability in the NFS daemon (nfsd) in SGI IRIX 6.5.19f and earlier allows remote attackers to cause a denial of service (kernel panic) via certain packets that cause XDR decoding errors, a different vulnerability than CVE-2003-0619.

27 Aug 2003
5.0
CVSS
CVE-2003-0679LOW

Unknown vulnerability in the libcpr library for the Checkpoint/Restart (cpr) system on SGI IRIX 6.5.21f and earlier allows local users to truncate or overwrite certain files.

27 Aug 2003
2.1
CVSS
CVE-2003-0176MEDIUM

The Name Service Daemon (nsd), when running on an NIS master on SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, allows remote attackers to cause a denial of service (crash) via a UDP port scan.

18 Aug 2003
5.0
CVSS