20 matches found
CVE-1999-0959
IRIX startmidi program allows local users to modify arbitrary files via a symlink attack...
EUVD-1999-1003
Malware in sbrugna...
IRIX - stdin-read Shellcode (40 bytes)
/ 40 byte MIPS/Irix PIC stdin-read shellcode. -scut/teso / unsigned long int shellcode = 0x24048cb0, / li $a0, -0x7350 / / dpatch: / 0x0490ffff, / bltzal $a0, dpatch / 0x2804ffff, / slti $a0, $zero, -1 / 0x240fffe3, / li $t7, -29 / 0x01e07827, / nor $t7, $t7, $zero / 0x03ef2821, / addu $a1, $ra,...
SGI IRIX <= 6.2 fsdump Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/355/info A number of vulnerabilities exist in the fsdump program included with Silicon Graphics Inc's IRIX operating system. Each of these holes can be used to obtain root privlilege. Variant 1: irix% /var/rfindd/fsdump...
IRIX - Bind TCP Shell (/bin/sh) Shellcode (364 bytes)
IRIX - Bind TCP Shell /bin/sh Shellcode 364 bytes. Shellcode exploit for IRIX platform / 364 byte MIPS/Irix PIC listening portshell shellcode. -scut/teso / unsigned long int shellcode = 0x2416fffd, / li $s6, -3 / 0x02c07027, / nor $t6, $s6, $zero / 0x01ce2025, / or $a0, $t6, $t6 / 0x01ce2825, / o...
Vulnerability in nsd LDAP Implementation on IRIX
-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title : Vulnerability in nsd LDAP Implementation Number : 20030407-01-P Date : April 25, 2003 Reference: CVE CAN-2003-0174 Reference: SGI BUGS 834042 874955 Fixed in : IRIX 6.5.20 when available or patch 5063 - ----------------------- - ---...
[LSD] IRIX rpc.xfsmd multiple remote root vulnerabilities
We have found several remotely exploitable vulnerabilities in the IRIX rpc.xfsmd service, which when properly exploited can result in an unauthorized root access to the vulnerable system. SGI was informed about this issue and assigned this bug number 858714. Xfsmd service is installed and started...
IRIX (5.3/6.2/6.3/6.4/6.5/6.5.11) /usr/lib/print/netprint Local Exploit
Exploit for irix platform in category local exploits ======================================================================= IRIX 5.3/6.2/6.3/6.4/6.5/6.5.11 /usr/lib/print/netprint Local Exploit ======================================================================= !/bin/sh copyright LAST STAGE ...
Objectserver vulnerability
Since the patches are now officially released, I feel I can finally release the details of the SGI objectserver vulnerability. This vulnerability was initailly reported to CERT and SGI Security on October 6, 1997. A beta version of patch 2849 was provided in February 1998. Howard ----- Forwarded...
CVE-1999-0044
fsdump command in IRIX allows local users to obtain root access by modifying sensitive files...
CVE-1999-0108
The printers program in IRIX has a buffer overflow that gives root access to local users...
PT-1997-1011 · Sgi · Sgi Irix
Name of the Vulnerable Software and Affected Versions: SGI IRIX affected versions not specified Description: The issue allows for root privileges to be obtained via a buffer overflow in the eject command on SGI IRIX systems. Recommendations: At the moment, there is no information about a newer...
SGI IRIX 6.4 - cgi-bin handler
SGI IRIX 6.4 - cgi-bin handler source: https://www.securityfocus.com/bid/380/info A vulnerability exists in the cgi-bin program 'handler', as included by Silicon Graphics in their Irix operating system. This vulnerability will allow a remote attacker to execute arbitrary commands on the vulnerabl...
SGI IRIX 6.4 - cgi-bin handler
source: https://www.securityfocus.com/bid/380/info A vulnerability exists in the cgi-bin program 'handler', as included by Silicon Graphics in their Irix operating system. This vulnerability will allow a remote attacker to execute arbitrary commands on the vulnerable host as the user the web serv...
SGI IRIX 6.4 - 'login' Local Privilege Escalation
/ source: https://www.securityfocus.com/bid/392/info A buffer overflow exists in the /bin/login program supplied by Silicon Graphics, as part of their Irix operating system. By supplying a carefully crafted, log buffer to the -h option of login, a local user can obtain root privileges. / /...
SGI IRIX 6.3 - cgi-bin 'webdist.cgi' Command Execution
source: https://www.securityfocus.com/bid/374/info A vulnerability exists in the webdist.cgi program, as shipped by Silicon Grpahics Inc with the Irix operating system. This vulnerability will allow any remote user to execute arbitrary commands on an affected machine. Commands will be executed wi...
IRIX 6.26.36.4 - xfs truncate() Privilege Check
IRIX 6.26.36.4 - xfs truncate Privilege Check / source: https://www.securityfocus.com/bid/1540/info The truncate system call on a number of versions of the IRIX operating system with the xfs file system does not properly check permissions before truncating a file, making it possible for...
IRIX 6.2/6.3/6.4 - xfs truncate() Privilege Check
/ source: https://www.securityfocus.com/bid/1540/info The truncate system call on a number of versions of the IRIX operating system with the xfs file system does not properly check permissions before truncating a file, making it possible for unprivileged users to damage files to which they would...
SGI IRIX 6.2 - fsdump Local Privilege Escalation
SGI IRIX 6.2 - fsdump Local Privilege Escalation source: https://www.securityfocus.com/bid/355/info A number of vulnerabilities exist in the fsdump program included with Silicon Graphics Inc's IRIX operating system. Each of these holes can be used to obtain root privlilege. Variant 1: irix%...
SGI IRIX 6.2 - 'fsdump' Local Privilege Escalation
source: https://www.securityfocus.com/bid/355/info A number of vulnerabilities exist in the fsdump program included with Silicon Graphics Inc's IRIX operating system. Each of these holes can be used to obtain root privlilege. Variant 1: irix% /var/rfindd/fsdump -L/etc/passwd -F/tmp/dump / count t...