Sco: >> Openserver >> 5.0.4 Security Vulnerabilities
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.
CVSS Score
7.5
EPSS Score
0.054
Published
2006-01-04
The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline.
CVSS Score
7.2
EPSS Score
0.001
Published
2005-01-26
Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitrary code as group bin via a long command line argument.
CVSS Score
4.6
EPSS Score
0.001
Published
2001-12-31
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
CVSS Score
10.0
EPSS Score
0.851
Published
2001-12-12
vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files via a symlink attack.
CVSS Score
3.7
EPSS Score
0.001
Published
2001-08-22
Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon.
CVSS Score
7.5
EPSS Score
0.009
Published
2000-02-16
SCO Doctor allows local users to gain root privileges through a Tools option.
CVSS Score
7.2
EPSS Score
0.001
Published
1999-09-09
Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.
CVSS Score
10.0
EPSS Score
0.483
Published
1999-02-09
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges.
CVSS Score
7.5
EPSS Score
0.007
Published
1999-01-27
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
CVSS Score
7.5
EPSS Score
0.011
Published
1997-12-10
Page 1