CVSS: 10.0EPSS: 1%CPEs: 20EXPL: 3CVE-2000-0733 – IRIX 5.2/5.3/6.x - TelnetD Environment Variable Format String
https://notcve.org/view.php?id=CVE-2000-0733
Telnetd telnet server in IRIX 5.2 through 6.1 does not properly cleans user-injected format strings, which allows remote attackers to execute arbitrary commands via a long RLD variable in the IAC-SB-TELOPT_ENVIRON request. • https://www.exploit-db.com/exploits/20149 ftp://sgigate.sgi.com/security/20000801-02-P http://archives.neohapsis.com/archives/bugtraq/2000-08/0154.html http://www.securityfocus.com/bid/1572 •
CVSS: 3.7EPSS: 0%CPEs: 2EXPL: 2CVE-2000-0579
https://notcve.org/view.php?id=CVE-2000-0579
IRIX crontab creates temporary files with predictable file names and with the umask of the user, which could allow local users to modify another user's crontab file as it is being edited. • http://archives.neohapsis.com/archives/bugtraq/2000-06/0204.html http://www.securityfocus.com/bid/1413 •
CVSS: 6.4EPSS: 0%CPEs: 8EXPL: 2CVE-2000-0283
https://notcve.org/view.php?id=CVE-2000-0283
The default installation of IRIX Performance Copilot allows remote attackers to access sensitive system information via the pmcd daemon. • http://archives.neohapsis.com/archives/bugtraq/2000-04/0056.html http://www.securityfocus.com/bid/1106 •
CVSS: 7.5EPSS: 3%CPEs: 10EXPL: 1CVE-2000-0207 – SGI InfoSearch 1.0 / SGI IRIX 6.5.x - fname
https://notcve.org/view.php?id=CVE-2000-0207
SGI InfoSearch CGI program infosrch.cgi allows remote attackers to execute commands via shell metacharacters. • https://www.exploit-db.com/exploits/19788 ftp://patches.sgi.com/support/free/security/advisories/20000501-01-P http://www.securityfocus.com/bid/1031 •
CVSS: 10.0EPSS: 2%CPEs: 31EXPL: 1CVE-2000-1221 – RedHat 6.1 / IRIX 6.5.18 - 'lpd' Command Execution
https://notcve.org/view.php?id=CVE-2000-1221
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP. • https://www.exploit-db.com/exploits/19722 ftp://patches.sgi.com/support/free/security/advisories/20021104-01-P http://rhn.redhat.com/errata/RHSA-2000-002.html http://www.atstake.com/research/advisories/2000/lpd_advisory.txt http://www.debian.org/security/2000/20000109 http://www.kb.cert.org/vuls/id/30308 http://www.l0pht.com/advisories/lpd_advisory http://www.securityfocus.com/bid/927 https://exchange.xforce.ibmcloud.com/vulnerabilities/3840 •