CVSS: 7.8EPSS: 0%CPEs: 14EXPL: 2CVE-1999-1398 – SGI IRIX 6.4 - 'xfsdump' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-1398
07 May 1997 — Vulnerability in xfsdump in SGI IRIX may allow local users to obtain root privileges via the bck.log log file, possibly via a symlink attack. • https://www.exploit-db.com/exploits/19358 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 2CVE-1999-1461 – SGI IRIX 6.4 - 'inpview' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-1461
07 May 1997 — inpview in InPerson on IRIX 5.3 through IRIX 6.5.10 trusts the PATH environmental variable to find and execute the ttsession program, which allows local users to obtain root access by modifying the PATH to point to a Trojan horse ttsession program. • https://www.exploit-db.com/exploits/19304 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1067
https://notcve.org/view.php?id=CVE-1999-1067
07 May 1997 — SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities. • http://marc.info/?l=bugtraq&m=87602167420919&w=2 •
CVSS: 9.8EPSS: 32%CPEs: 7EXPL: 1CVE-1999-0039 – SGI IRIX 6.3 - cgi-bin 'webdist.cgi' Command Execution
https://notcve.org/view.php?id=CVE-1999-0039
06 May 1997 — webdist CGI program (webdist.cgi) in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter. • https://www.exploit-db.com/exploits/19299 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-1999-1116
https://notcve.org/view.php?id=CVE-1999-1116
03 May 1997 — Vulnerability in runpriv in Indigo Magic System Administration subsystem of SGI IRIX 6.3 and 6.4 allows local users to gain root privileges. • ftp://patches.sgi.com/support/free/security/advisories/19970503-01-PX •
CVSS: 7.8EPSS: 0%CPEs: 43EXPL: 5CVE-1999-0040 – LibXt - 'XtAppInitialize()' Local Overflow *xterm
https://notcve.org/view.php?id=CVE-1999-0040
01 May 1997 — Buffer overflow in Xt library of X Windowing System allows local users to execute commands with root privileges. • https://www.exploit-db.com/exploits/331 •
CVSS: 8.4EPSS: 0%CPEs: 45EXPL: 2CVE-1999-0038 – BSD/OS 2.1 / DG/UX 7.0 / Debian 1.3 / HP-UX 10.34 / IBM AIX 4.2 / SGI IRIX 6.4 / Solaris 2.5.1 - '/usr/bin/X11/xlock' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0038
26 Apr 1997 — Buffer overflow in xlock program allows local users to execute commands as root. • https://www.exploit-db.com/exploits/19173 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 1CVE-1999-0149 – SGI IRIX 6.2 - cgi-bin wrap
https://notcve.org/view.php?id=CVE-1999-0149
19 Apr 1997 — The wrap CGI program in IRIX allows remote attackers to view arbitrary directory listings via a .. (dot dot) attack. • https://www.exploit-db.com/exploits/19298 •
CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 1CVE-1999-0959 – SGI IRIX 6.4 - 'startmidi' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-1999-0959
01 Feb 1997 — IRIX startmidi program allows local users to modify arbitrary files via a symlink attack. • https://www.exploit-db.com/exploits/19355 •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-1999-0049
https://notcve.org/view.php?id=CVE-1999-0049
08 Jan 1997 — Csetup under IRIX allows arbitrary file creation or overwriting. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0049 •