7.1.4

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

sco

NVD

Published: 2005-05-18

Updated: 2011-03-08

Summary

The X server in SCO UnixWare 7.1.1, 7.1.3, and 7.1.4 does not properly create socket directories in /tmp, which could allow attackers to hijack local sockets.

Vulnerable Configurations

Part	Description	Count
OS	Sco SCO Unixware 7.1.1 SCO Unixware 7.1.3 SCO Unixware 7.1.4	3

References

ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.8/SCOSA-2005.8.txt
http://www.vupen.com/english/advisories/2005/0077