Total
66 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1323 | 5 Redhat, Safe.pm, Sco and 2 more | 9 Enterprise Linux, Linux Advanced Workstation, Safe.pm and 6 more | 2023-12-10 | 4.6 MEDIUM | N/A |
Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls. | |||||
CVE-1999-0825 | 1 Sco | 1 Unixware | 2023-12-10 | 3.6 LOW | N/A |
The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail. | |||||
CVE-2004-1307 | 10 Apple, Avaya, Conectiva and 7 more | 19 Mac Os X, Mac Os X Server, Call Management System Server and 16 more | 2023-12-10 | 7.5 HIGH | N/A |
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow. | |||||
CVE-2002-1998 | 1 Sco | 2 Open Unix, Unixware | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21). | |||||
CVE-2000-0029 | 1 Sco | 1 Unixware | 2023-12-10 | 4.6 MEDIUM | N/A |
UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack. | |||||
CVE-1999-0979 | 1 Sco | 1 Unixware | 2023-12-10 | 7.2 HIGH | N/A |
The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed. | |||||
CVE-1999-0010 | 8 Data General, Ibm, Isc and 5 more | 11 Dg Ux, Aix, Bind and 8 more | 2023-12-10 | 5.0 MEDIUM | N/A |
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages. | |||||
CVE-2000-0130 | 1 Sco | 1 Unixware | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in SCO scohelp program allows remote attackers to execute commands. | |||||
CVE-1999-0828 | 1 Sco | 1 Unixware | 2023-12-10 | 3.6 LOW | N/A |
UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission. | |||||
CVE-1999-0836 | 1 Sco | 1 Unixware | 2023-12-10 | 10.0 HIGH | N/A |
UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack. | |||||
CVE-1999-0004 | 3 Hp, Sco, University Of Washington | 3 Dtmail, Unixware, Pine | 2023-12-10 | 5.0 MEDIUM | N/A |
MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook. | |||||
CVE-1999-0835 | 3 Ibm, Sco, Sun | 4 Aix, Openserver, Unixware and 1 more | 2023-12-10 | 10.0 HIGH | N/A |
Denial of service in BIND named via malformed SIG records. | |||||
CVE-1999-0693 | 3 Hp, Ibm, Sco | 3 Hp-ux, Aix, Unixware | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges. | |||||
CVE-2000-0307 | 1 Sco | 3 Open Desktop, Openserver, Unixware | 2023-12-10 | 5.0 MEDIUM | N/A |
Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024. | |||||
CVE-2000-0348 | 1 Sco | 1 Unixware | 2023-12-10 | 10.0 HIGH | N/A |
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges. | |||||
CVE-2000-0099 | 1 Sco | 1 Unixware | 2023-12-10 | 7.2 HIGH | N/A |
Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument. | |||||
CVE-2000-0842 | 1 Sco | 1 Unixware | 2023-12-10 | 5.0 MEDIUM | N/A |
The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||||
CVE-2000-1014 | 1 Sco | 1 Unixware | 2023-12-10 | 7.5 HIGH | N/A |
Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText parameter. | |||||
CVE-2000-0173 | 1 Sco | 1 Unixware | 2023-12-10 | 5.0 MEDIUM | N/A |
Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service. | |||||
CVE-2000-0351 | 1 Sco | 1 Unixware | 2023-12-10 | 4.6 MEDIUM | N/A |
Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages. |