Sco: >> Openserver >> 5.0.7 Security Vulnerabilities
The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as input to the script.thaw JavaScript function, which is then deserialized and executed.
CVSS Score
9.8
EPSS Score
0.011
Published
2003-10-07
SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program.
CVSS Score
7.2
EPSS Score
0.002
Published
2003-10-06
Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges.
CVSS Score
7.2
EPSS Score
0.001
Published
2003-08-27
Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.
CVSS Score
10.0
EPSS Score
0.031
Published
2001-03-12
Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.
CVSS Score
5.0
EPSS Score
0.005
Published
2001-03-12
A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user.
CVSS Score
7.2
EPSS Score
0.0
Published
1999-03-01
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.
CVSS Score
10.0
EPSS Score
0.005
Published
1998-12-04
Page 3