Vulnerabilities > CVE-1999-0828 - Buffer Overflow vulnerability in SCO Unixware 7.0/7.1

047910
CVSS 3.6 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
NONE
local
low complexity
sco
exploit available
NVD
Published: 1999-12-02
Updated: 2008-09-09

Summary

UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.

Vulnerable Configurations

Part Description Count
OS
Sco
2

Exploit-Db

  • descriptionSCO Unixware 7.1 'pkg' commands Vulnerability. CVE-1999-0828. Local exploit for sco platform
    idEDB-ID:19658
    last seen2016-02-02
    modified1999-12-03
    published1999-12-03
    reporterBrock Tellier
    sourcehttps://www.exploit-db.com/download/19658/
    titleSCO Unixware 7.1 - 'pkg' commands Vulnerability
  • descriptionSCO Unixware 7.1 pkginstall Buffer Overflow. CVE-1999-0828 ,CVE-1999-0988. Local exploit for sco platform
    idEDB-ID:19661
    last seen2016-02-02
    modified1999-12-06
    published1999-12-06
    reporterBrock Tellier
    sourcehttps://www.exploit-db.com/download/19661/
    titleSCO Unixware 7.1 pkginstall Buffer Overflow
  • descriptionSCO Unixware 7.1 pkgcat Buffer Overflow. CVE-1999-0828 . Local exploit for sco platform
    idEDB-ID:19660
    last seen2016-02-02
    modified1999-12-06
    published1999-12-06
    reporterBrock Tellier
    sourcehttps://www.exploit-db.com/download/19660/
    titleSCO Unixware 7.1 pkgcat Buffer Overflow

References