Executive Summary

The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP server, which could allow attackers to log in without a password.

Why It Matters

CVE-2003-0174 is rated CRITICAL severity, requiring immediate attention from security teams.

CVSS Base Score: 9.8/10

Affected Technologies

Vendors: sgi

Products: irix

🛡️What Defenders Should Check

Check if you are affected — Review your asset inventory for products listed in CVE-2003-0174.

Apply available patches — Visit vendor advisories for the latest security updates.

Monitor for exploitation — Check your SIEM/IDS logs for related indicators.

Use Vulnios to continuously monitor your exposure to CVE-2003-0174 and similar vulnerabilities.

References & Sources

ftp://patches.sgi.com/support/free/security/advisories/20030407-01-P

http://www.ciac.org/ciac/bulletins/n-084.shtml

http://www.securityfocus.com/bid/7442

https://exchange.xforce.ibmcloud.com/vulnerabilities/11860

ftp://patches.sgi.com/support/free/security/advisories/20030407-01-P

http://www.ciac.org/ciac/bulletins/n-084.shtml

http://www.securityfocus.com/bid/7442

https://exchange.xforce.ibmcloud.com/vulnerabilities/11860

AI Security Advisor

Get AI-powered security recommendations tailored to this specific threat — including risk assessment, detection guidance, MITRE ATT&CK mapping, and actionable remediation steps.

Affected Products

irix

Sources

NVD / NIST

critical

Protect Your Organization

Monitor CVEs, scan for vulnerabilities, and get real-time threat alerts — all in one platform.

Get Started Free Free Security Scan OSINT Dashboard

Get instant alerts on Telegram

Join our public channel for real-time critical CVE alerts.

Follow @vulnios

Critical Vulnerability: CVE-2003-0174 — sgi — irix