CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2005-2925 – SGI IRIX 6.5.28 - 'runpriv' Design Error
https://notcve.org/view.php?id=CVE-2005-2925
runpriv in SGI IRIX allows local users to bypass intended restrictions and execute arbitrary commands via shell metacharacters in a command line for a privileged binary in /usr/sysadm/privbin. • https://www.exploit-db.com/exploits/1577 ftp://patches.sgi.com/support/free/security/advisories/20051001-01-P.asc http://secunia.com/advisories/17131 http://securitytracker.com/id?1015031 http://www.idefense.com/application/poi/display?id=312&type=vulnerabilities http://www.osvdb.org/19907 http://www.securityfocus.com/archive/1/427409/100/0/threaded http://www.securityfocus.com/bid/15055 https://exchange.xforce.ibmcloud.com/vulnerabilities/22561 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-0139
https://notcve.org/view.php?id=CVE-2005-0139
Unknown vulnerability in rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not sufficiently restrict access rights for read-mostly exports, which allows attackers to conduct unauthorized activities. Vulnerabilidad desconocida en rpc.mountd en SGI IRIX 6.5.25, 6.5.26 y 6.5.27 no restringe el derecho de acceso suficientemente para leer la mayoría de las exportaciones, lo que permite a atacantes llevar a cabo actividades no autorizadas. • ftp://patches.sgi.com/support/free/security/advisories/20050601-01-U http://secunia.com/advisories/15619 http://www.ciac.org/ciac/bulletins/p-214.shtml http://www.vupen.com/english/advisories/2005/0702 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-0138
https://notcve.org/view.php?id=CVE-2005-0138
rpc.mountd in SGI IRIX 6.5.25, 6.5.26, and 6.5.27 does not correctly allow access to anonymous clients that connect from a system whose hostname can not be determined. NOTE: while this issue occurs in a security mechanism, there is no apparent attacker role and probably does not satisfy the CVE definition of a vulnerability. rpc.mountd en SGI IRIX 6.5.25, 6.5.26 y 6.5.27 no permiten correctamente el acceso a clientes anónimos que conectan desde un sistema cuyo nombre de host no puede ser determinado. NOTA: mientras que este problema ocurre en un mecanismo de seguridad, no hay un rol de atacante aparente y probablemente no satisface la definición de CVE de una vulnerabilidad. • ftp://patches.sgi.com/support/free/security/advisories/20050601-01-U http://secunia.com/advisories/15619 http://www.ciac.org/ciac/bulletins/p-214.shtml http://www.vupen.com/english/advisories/2005/0702 • CWE-17: DEPRECATED: Code •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 1CVE-2005-0464 – SGI IRIX 6.5.22 - GR_OSView Information Disclosure
https://notcve.org/view.php?id=CVE-2005-0464
gr_osview in SGI IRIX 6.5.22, and possibly other 6.5 versions, does not drop privileges when opening description files while in debug mode, which allows local users to read a line from arbitrary files via the -d and -D options, which prints the line as a formatting error. • https://www.exploit-db.com/exploits/25361 ftp://patches.sgi.com/support/free/security/advisories/20050402-01-P http://secunia.com/advisories/14875 http://securitytracker.com/id?1013662 http://www.idefense.com/application/poi/display?id=226&type=vulnerabilities http://www.osvdb.org/15351 •
CVSS: 2.1EPSS: 0%CPEs: 100EXPL: 2CVE-2005-0465 – SGI IRIX 6.5.22 - GR_OSView Local Arbitrary File Overwrite
https://notcve.org/view.php?id=CVE-2005-0465
gr_osview in SGI IRIX does not drop privileges before opening files, which allows local users to overwrite arbitrary files via the -s option. • https://www.exploit-db.com/exploits/25362 ftp://patches.sgi.com/support/free/security/advisories/20050402-01-P http://secunia.com/advisories/14875 http://securitytracker.com/id?1013662 http://www.idefense.com/application/poi/display?id=225&type=vulnerabilities •