Vulnerabilities > CVE-2005-2926 - Local Buffer Overflow vulnerability in SCO OpenServer Backupsh

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

sco

NVD

Published: 2005-10-25

Updated: 2019-10-09

Summary

Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable.

Vulnerable Configurations

Part	Description	Count
OS	Sco SCO Openserver *	1

References

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.40/SCOSA-2005.40.txt
http://secunia.com/advisories/17274
http://securitytracker.com/id?1015099
http://www.idefense.com/application/poi/display?type=vulnerabilities
http://www.osvdb.org/20153
http://www.osvdb.org/20154
http://www.securityfocus.com/bid/15160