Sco: >> Openserver >> 5.0.5 Security Vulnerabilities
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.
CVSS Score
7.5
EPSS Score
0.054
Published
2006-01-04
The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline.
CVSS Score
7.2
EPSS Score
0.001
Published
2005-01-26
SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods.
CVSS Score
7.5
EPSS Score
0.034
Published
2004-12-31
Certain scripts in OpenServer before 5.0.6 allow local users to overwrite files and conduct other unauthorized activities via a symlink attack on temporary files.
CVSS Score
2.1
EPSS Score
0.001
Published
2003-11-17
SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program.
CVSS Score
7.2
EPSS Score
0.002
Published
2003-10-06
The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.
CVSS Score
5.0
EPSS Score
0.021
Published
2002-10-28
Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument.
CVSS Score
7.2
EPSS Score
0.001
Published
2002-07-26
Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitrary code as group bin via a long command line argument.
CVSS Score
4.6
EPSS Score
0.001
Published
2001-12-31
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
CVSS Score
10.0
EPSS Score
0.851
Published
2001-12-12
Inetd in OpenServer 5.0.5 allows remote attackers to cause a denial of service (crash) via a port scan, e.g. with nmap -PO.
CVSS Score
5.0
EPSS Score
0.008
Published
2001-11-30
Page 1