Total
72 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0627 | 1 Sco | 1 Openserver | 2023-12-10 | 3.7 LOW | N/A |
vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files via a symlink attack. | |||||
CVE-1999-1450 | 1 Sco | 2 Openserver, Unixware | 2023-12-10 | 7.5 HIGH | N/A |
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges. | |||||
CVE-2001-1148 | 1 Sco | 1 Openserver | 2023-12-10 | 4.6 MEDIUM | N/A |
Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh. | |||||
CVE-2001-0579 | 1 Sco | 1 Openserver | 2023-12-10 | 7.5 HIGH | N/A |
lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first argument to the command. | |||||
CVE-2004-1124 | 1 Sco | 2 Openserver, Unixware | 2023-12-10 | 4.6 MEDIUM | N/A |
Unknown vulnerability in chroot on SCO UnixWare 7.1.1 through 7.1.4 allows local users to escape the chroot jail and conduct unauthorized activities. | |||||
CVE-2001-1578 | 1 Sco | 1 Openserver | 2023-12-10 | 2.1 LOW | N/A |
Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors. | |||||
CVE-1999-0411 | 1 Sco | 1 Openserver | 2023-12-10 | 7.2 HIGH | N/A |
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack, allowing a local user to gain root access. | |||||
CVE-2002-1199 | 3 Caldera, Sco, Sun | 4 Openlinux, Openserver, Solaris and 1 more | 2023-12-10 | 5.0 MEDIUM | N/A |
The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. | |||||
CVE-1999-1209 | 1 Sco | 2 Open Desktop, Openserver | 2023-12-10 | 7.2 HIGH | N/A |
Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local users to gain root privileges. | |||||
CVE-2001-0587 | 1 Sco | 1 Openserver | 2023-12-10 | 7.2 HIGH | N/A |
deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command. | |||||
CVE-2004-0511 | 1 Sco | 1 Openserver | 2023-12-10 | 2.1 LOW | N/A |
Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a null dereference. | |||||
CVE-1999-1571 | 1 Sco | 1 Openserver | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in sar for SCO OpenServer 5.0.0 through 5.0.5 may allow local users to gain root privileges via a long -f parameter, a different vulnerability than CVE-1999-1570. | |||||
CVE-1999-0096 | 3 Bsdi, Freebsd, Sco | 4 Bsd Os, Freebsd, Internet Faststart and 1 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Sendmail decode alias can be used to overwrite sensitive files. | |||||
CVE-1999-0153 | 2 Microsoft, Sco | 4 Windows 2000, Windows 95, Windows Nt and 1 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. | |||||
CVE-2004-0081 | 23 4d, Apple, Avaya and 20 more | 66 Webstar, Mac Os X, Mac Os X Server and 63 more | 2023-12-10 | 5.0 MEDIUM | N/A |
OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool. | |||||
CVE-1999-0010 | 8 Data General, Ibm, Isc and 5 more | 11 Dg Ux, Aix, Bind and 8 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. | |||||
CVE-1999-0697 | 1 Sco | 1 Openserver | 2023-12-10 | 7.2 HIGH | N/A |
SCO Doctor allows local users to gain root privileges through a Tools option. | |||||
CVE-2001-0578 | 1 Sco | 1 Openserver | 2023-12-10 | 4.6 MEDIUM | N/A |
Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command. | |||||
CVE-1999-0835 | 3 Ibm, Sco, Sun | 4 Aix, Openserver, Unixware and 1 more | 2023-12-10 | 10.0 HIGH | N/A |
Denial of service in BIND named via malformed SIG records. | |||||
CVE-2003-0742 | 1 Sco | 1 Openserver | 2023-12-10 | 7.2 HIGH | N/A |
SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program. |