Vulnerabilities > CVE-2004-0390 - Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6/5.0.7
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN sco
exploit available
Summary
SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 3 |
Exploit-Db
| description | SCO OpenServer 5.0.x StartX Weak XHost Permissions Vulnerability. CVE-2004-0390. Local exploit for sco platform |
| id | EDB-ID:20851 |
| last seen | 2016-02-02 |
| modified | 2001-05-07 |
| published | 2001-05-07 |
| reporter | Richard Johnson |
| source | https://www.exploit-db.com/download/20851/ |
| title | SCO OpenServer 5.0.x StartX Weak XHost Permissions Vulnerability |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0424.html
- http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0424.html
- http://www.securityfocus.com/advisories/6684
- http://www.securityfocus.com/advisories/6684
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16113
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16113