CVSS: 9.8EPSS: 42%CPEs: 37EXPL: 1CVE-2002-1317 – XFree86 X11R6 3.3.x - Font Server Remote Buffer Overrun
https://notcve.org/view.php?id=CVE-2002-1317
11 Dec 2002 — Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query. Desbordamiento de búfer en la rutina Dispatch() en el servidor de fuentes XFS (fs.auto) en Solaris 2.5.1 a 9 permite a atacantes remotos causar una denegación de servicio (caída) o ejecutar código arbitrario mediante una cierta petición XFS. • https://www.exploit-db.com/exploits/22036 •
CVSS: 7.5EPSS: 2%CPEs: 59EXPL: 0CVE-2002-1265
https://notcve.org/view.php?id=CVE-2002-1265
12 Nov 2002 — The Sun RPC functionality in multiple libc implementations does not provide a time-out mechanism when reading data from TCP connections, which allows remote attackers to cause a denial of service (hang). La funcionalidad RPC de Sun en múltiples implementaciones de libc no provee de un mecanismo de exceso de tiempo cuando se leen datos de conexiones TCP, lo que permite a atacantes remotos causar una denegación de servicio (cuelgue) • ftp://patches.sgi.com/support/free/security/advisories/20021103-01-P •
CVSS: 7.5EPSS: 0%CPEs: 17EXPL: 0CVE-2002-0632
https://notcve.org/view.php?id=CVE-2002-0632
14 Aug 2002 — Vulnerability in SGI BDS (Bulk Data Service) BDSPro 2.4 and earlier allows clients to read arbitrary files on a BDS server. Vulnerabilidad en SGI BDS (Bulk Data Sevice) BDSPro 2.4 y anteriore permite a clientes leer ficheros arbitrarios en un servidor BDS. • ftp://patches.sgi.com/support/free/security/advisories/20020804-01-P •
CVSS: 7.2EPSS: 0%CPEs: 47EXPL: 0CVE-2002-0678
https://notcve.org/view.php?id=CVE-2002-0678
23 Jul 2002 — CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure. El servidor de bases de datos CDE ToolTalk (ttdbserver) permite a usuarios locales sobreescribir ficheros arbitrarios mediante un ataque en enlaces simbólicos (symlink attack) en el fichero de registro (log) de transacciones usado por el procedimiento RPC _TT_TRANSACTION • ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt •
CVSS: 9.8EPSS: 19%CPEs: 46EXPL: 0CVE-2002-0677
https://notcve.org/view.php?id=CVE-2002-0677
12 Jul 2002 — CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. El sevidor de bases de datos CDE ToolTalk (ttdbserver) permite a atacantes remotos sobrescribir posiciones arbitrarias de memoria con ceros, y posiblemente ganar privilegios, mediante un arguemnte de descriptor de fichero en una llamada al... • ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2002-0631
https://notcve.org/view.php?id=CVE-2002-0631
03 Jul 2002 — Unknown vulnerability in nveventd in NetVisualyzer on SGI IRIX 6.5 through 6.5.16 allows local users to write arbitrary files and gain root privileges. • ftp://patches.sgi.com/support/free/security/advisories/20020607-02-I •
CVSS: 10.0EPSS: 1%CPEs: 48EXPL: 0CVE-2002-0359
https://notcve.org/view.php?id=CVE-2002-0359
03 Jul 2002 — xfsmd for IRIX 6.5 through 6.5.16 uses weak authentication, which allows remote attackers to call dangerous RPC functions, including those that can mount or unmount xfs file systems, to gain root privileges. xfsmd para IRIX 6.5 a la 6.5.16 utiliza una autenticación débil, lo cual permite a atacantes remotos la llamada de funciones RPC peligrosas, incluyendo aquellas que permiten montar y desmontar sistemas de ficheros xfs, para obtener permisos de root. • ftp://patches.sgi.com/support/free/security/advisories/20020606-01-I •
CVSS: 9.8EPSS: 6%CPEs: 17EXPL: 1CVE-2002-0652 – SGI IRIX 6.x - 'rpc.xfsmd' Remote Command Execution
https://notcve.org/view.php?id=CVE-2002-0652
01 Jul 2002 — xfsmd for IRIX 6.5 through 6.5.16 allows remote attackers to execute arbitrary code via shell metacharacters that are not properly filtered from several calls to the popen() function, such as export_fs(). • https://www.exploit-db.com/exploits/21571 •
CVSS: 5.5EPSS: 0%CPEs: 14EXPL: 0CVE-2002-0042
https://notcve.org/view.php?id=CVE-2002-0042
18 Jun 2002 — Vulnerability in the XFS file system for SGI IRIX before 6.5.12 allows local users to cause a denial of service (hang) by creating a file that is not properly processed by XFS. • ftp://patches.sgi.com/support/free/security/advisories/20020402-01-P •
CVSS: 7.8EPSS: 0%CPEs: 44EXPL: 0CVE-2002-0357
https://notcve.org/view.php?id=CVE-2002-0357
18 Jun 2002 — Unknown vulnerability in rpc.passwd in the nfs.sw.nis subsystem of SGI IRIX 6.5.15 and earlier allows local users to gain root privileges. • ftp://patches.sgi.com/support/free/security/advisories/20020601-01-P •