Filtered by vendor Sco
Subscribe
Total
129 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2005-3625 | 18 Conectiva, Debian, Easy Software Products and 15 more | 33 Linux, Debian Linux, Cups and 30 more | 2023-12-10 | 10.0 HIGH | N/A |
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU spins." | |||||
CVE-2005-2934 | 1 Sco | 1 Unixware | 2023-12-10 | 7.2 HIGH | N/A |
Unspecified vulnerability in ptrace in SCO UnixWare 7.1.3 and 7.1.4 allows local users to gain privileges via unspecified vectors. | |||||
CVE-2003-1021 | 1 Sco | 1 Openserver | 2023-12-10 | 7.2 HIGH | N/A |
The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline. | |||||
CVE-2005-2927 | 1 Sco | 1 Unixware | 2023-12-10 | 7.2 HIGH | N/A |
Stack-based buffer overflow in ppp in SCO Unixware 7.1.3 and 7.1.4, and possibly earlier versions, allows local users to execute arbitrary code via a long argument to the (1) prompt or (2) defprompt command. | |||||
CVE-2005-3903 | 1 Sco | 1 Unixware | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in uidadmin in SCO Unixware 7.1.3 and 7.1.4 allows local users to execute arbitrary code via a -S (scheme) argument that specifies a large file, a different vulnerability than CVE-2001-1063. | |||||
CVE-2006-4655 | 2 Sco, Sun | 2 Unixware, Solaris | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value. | |||||
CVE-2005-2132 | 1 Sco | 1 Unixware | 2023-12-10 | 2.1 LOW | N/A |
RPC portmapper (rpcbind) in SCO UnixWare 7.1.1 m5, 7.1.3 mp5, and 7.1.4 mp2 allows remote attackers or local users to cause a denial of service (lack of response) via multiple invalid portmap requests. | |||||
CVE-2005-3626 | 18 Conectiva, Debian, Easy Software Products and 15 more | 33 Linux, Debian Linux, Cups and 30 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference. | |||||
CVE-2004-1131 | 1 Sco | 1 Openserver | 2023-12-10 | 7.2 HIGH | N/A |
Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments. | |||||
CVE-2000-0158 | 1 Sco | 1 Openserver | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon. | |||||
CVE-2001-0575 | 1 Sco | 1 Openserver | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut. | |||||
CVE-2003-0597 | 1 Sco | 1 Openserver | 2023-12-10 | 7.2 HIGH | N/A |
Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges. | |||||
CVE-1999-0864 | 1 Sco | 1 Unixware | 2023-12-10 | 7.2 HIGH | N/A |
UnixWare programs that dump core allow a local user to modify files via a symlink attack on the ./core.pid file. | |||||
CVE-1999-0023 | 6 Bsdi, Freebsd, Ibm and 3 more | 10 Bsd Os, Freebsd, Aix and 7 more | 2023-12-10 | 7.2 HIGH | N/A |
Local user gains root privileges via buffer overflow in rdist, via lookup() function. | |||||
CVE-1999-0988 | 1 Sco | 1 Unixware | 2023-12-10 | 7.2 HIGH | N/A |
UnixWare pkgtrans allows local users to read arbitrary files via a symlink attack. | |||||
CVE-1999-1138 | 1 Sco | 4 Open Desktop, Open Desktop Lite, Openserver and 1 more | 2023-12-10 | 10.0 HIGH | N/A |
SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable. | |||||
CVE-1999-0078 | 10 Bsdi, Freebsd, Hp and 7 more | 11 Bsd Os, Freebsd, Hp-ux and 8 more | 2023-12-10 | 1.9 LOW | N/A |
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call. | |||||
CVE-2002-0716 | 1 Sco | 1 Openserver | 2023-12-10 | 7.2 HIGH | N/A |
Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument. | |||||
CVE-1999-1252 | 1 Sco | 1 Unixware | 2023-12-10 | 7.2 HIGH | N/A |
Vulnerability in a certain system call in SCO UnixWare 2.0.x and 2.1.0 allows local users to access arbitrary files and gain root privileges. | |||||
CVE-1999-0017 | 9 Caldera, Freebsd, Gnu and 6 more | 11 Openlinux, Freebsd, Inet and 8 more | 2023-12-10 | 7.5 HIGH | N/A |
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce. |