Page 9 of 153 results (0.003 seconds)

CVSS: 2.1EPSS: 0%CPEs: 6EXPL: 1

CVE-2002-0875 – SGI IRIX 6.5.x - FAM Arbitrary Root Owned Directory File Listing

https://notcve.org/view.php?id=CVE-2002-0875

Vulnerability in FAM 2.6.8, 2.6.6, and other versions allows unprivileged users to obtain the names of files whose access is restricted to the root group. Vulnerabilidad en FAM 2.6.8, 2.6.6 y otras versiones permite a usuarios sin privilegios obtener los nombres de ficheros cuyo acceso está restringido al grupo de root • https://www.exploit-db.com/exploits/21720 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc ftp://patches.sgi.com/support/free/security/advisories/20000301-03-I http://www.debian.org/security/2002/dsa-154 http://www.iss.net/security_center/static/9880.php http://www.redhat.com/support/errata/RHSA-2005-005.html http://www.securityfocus.com/bid/5487 https://access.redhat.com/security/cve/CVE-2002-0875 https://bugzilla.redhat.com/show_bug.cgi •

CVSS: 5.0EPSS: 0%CPEs: 17EXPL: 0

CVE-2002-0632

https://notcve.org/view.php?id=CVE-2002-0632

Vulnerability in SGI BDS (Bulk Data Service) BDSPro 2.4 and earlier allows clients to read arbitrary files on a BDS server. Vulnerabilidad en SGI BDS (Bulk Data Sevice) BDSPro 2.4 y anteriore permite a clientes leer ficheros arbitrarios en un servidor BDS. • ftp://patches.sgi.com/support/free/security/advisories/20020804-01-P http://www.iss.net/security_center/static/9825.php http://www.osvdb.org/11081 http://www.securityfocus.com/bid/5448 •

CVSS: 7.2EPSS: 1%CPEs: 47EXPL: 0

CVE-2002-0678

https://notcve.org/view.php?id=CVE-2002-0678

CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure. El servidor de bases de datos CDE ToolTalk (ttdbserver) permite a usuarios locales sobreescribir ficheros arbitrarios mediante un ataque en enlaces simbólicos (symlink attack) en el fichero de registro (log) de transacciones usado por el procedimiento RPC _TT_TRANSACTION • ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt ftp://patches.sgi.com/support/free/security/advisories/20021101-01-P http://archives.neohapsis.com/archives/aix/2002-q3/0002.html http://marc.info/?l=bugtraq&m=102635906423617&w=2 http://www.cert.org/advisories/CA-2002-20.html http://www.iss.net/security_center/static/9527.php http://www.kb.cert.org/vuls/id/299816 http://www.securityfocus.com/bid/5083 http://www1.itrc.hp •

CVSS: 7.5EPSS: 0%CPEs: 46EXPL: 0

CVE-2002-0677

https://notcve.org/view.php?id=CVE-2002-0677

CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. El sevidor de bases de datos CDE ToolTalk (ttdbserver) permite a atacantes remotos sobrescribir posiciones arbitrarias de memoria con ceros, y posiblemente ganar privilegios, mediante un arguemnte de descriptor de fichero en una llamada al procedimiento AUTH_UNIX, que es usado como índice de tabla en el procedimiento _TT_ISCLOSE. • ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt ftp://patches.sgi.com/support/free/security/advisories/20021102-02-P http://marc.info/?l=bugtraq&m=102635906423617&w=2 http://www.cert.org/advisories/CA-2002-20.html http://www.kb.cert.org/vuls/id/975403 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1099 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15 https:/&#x •

CVSS: 10.0EPSS: 2%CPEs: 48EXPL: 0

CVE-2002-0359

https://notcve.org/view.php?id=CVE-2002-0359

xfsmd for IRIX 6.5 through 6.5.16 uses weak authentication, which allows remote attackers to call dangerous RPC functions, including those that can mount or unmount xfs file systems, to gain root privileges. xfsmd para IRIX 6.5 a la 6.5.16 utiliza una autenticación débil, lo cual permite a atacantes remotos la llamada de funciones RPC peligrosas, incluyendo aquellas que permiten montar y desmontar sistemas de ficheros xfs, para obtener permisos de root. • ftp://patches.sgi.com/support/free/security/advisories/20020606-01-I http://marc.info/?l=bugtraq&m=102459162909825&w=2 http://www.iss.net/security_center/static/9401.php http://www.kb.cert.org/vuls/id/521147 http://www.securityfocus.com/bid/5072 •