📦

propack

Vendor: sgi

Actively Exploited 0 CISA KEV List

PoC / Exploits 11 Code Available

Total RCEs 4 Remote Access

Total CVEs 54 Total Indexed

Avg. EPSS 6.96% Exploit Prob.

Latest CVE CVE-2006-1167 Feb 06

Security Vulnerability Index

Page 1 / 6

1.2 CVSS

CVE-2006-1167

SGI ProPack 3 SP6 kernel displays the frame buffer contents of the last session after a reboot, which might allow local users to obtain sensitive information.

EPSS: 0.07%

Severity: LOW

Feb 06, 2007

5.0 CVSS

CVE-2005-3626

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.

EPSS: 9.17%

Severity: MEDIUM

Dec 31, 2005

10.0 CVSS

CVE-2005-3625

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU spins."

EPSS: 11.29%

Severity: HIGH

Dec 31, 2005

5.0 CVSS

CVE-2005-3624

RCE

The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows.

EPSS: 7.22%

Severity: MEDIUM

Dec 31, 2005

7.2 CVSS

CVE-2005-1859

Unknown vulnerability in arshell in the Array Service (arrayd) for SGI ProPack 3 with SP 5 and 6, and SGI ProPack 4, allows local users to execute arbitrary shells as root on other hosts in the cluster or array.

EPSS: 0.05%

Severity: HIGH

Jul 12, 2005

7.5 CVSS

CVE-2005-0005

Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote attackers to execute arbitrary code via a .PSD image file with a large number of layers.

EPSS: 3.50%

Severity: HIGH

May 02, 2005

7.5 CVSS

CVE-2005-0206

The patch for integer overflow vulnerabilities in Xpdf 2.0 and 3.0 (CVE-2004-0888) is incomplete for 64-bit architectures on certain Linux distributions such as Red Hat, which could leave Xpdf users exposed to the original vulnerabilities.

EPSS: 6.53%

Severity: HIGH

Apr 27, 2005

5.0 CVSS

CVE-2005-1043

exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion.

EPSS: 1.11%

Severity: MEDIUM

Apr 14, 2005

5.0 CVSS

CVE-2005-0759

ImageMagick before 6.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image with an invalid tag.

EPSS: 1.50%

Severity: MEDIUM

Mar 23, 2005

5.0 CVSS

CVE-2005-0761

Unknown vulnerability in ImageMagick before 6.1.8 allows remote attackers to cause a denial of service (application crash) via a crafted PSD file.

EPSS: 1.08%

Severity: MEDIUM

Mar 23, 2005

Displaying 10 of 54 Total Entries

1 2 3 4 5 ... 6

Total 6 Sections