Vulnerabilities > SCO > Openserver > 5.0.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-01-04 | CVE-2006-0072 | Buffer Overflow vulnerability in SCO OpenServer Termsh Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. | 7.5 |
2005-01-26 | CVE-2003-1021 | Local Command Line Buffer Overflow vulnerability in SCO scosession The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline. | 7.2 |
2004-12-31 | CVE-2004-0390 | Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6/5.0.7 SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods. | 7.5 |
2003-11-17 | CVE-2003-0872 | Unspecified vulnerability in SCO Openserver 5.0.5 Certain scripts in OpenServer before 5.0.6 allow local users to overwrite files and conduct other unauthorized activities via a symlink attack on temporary files. | 2.1 |
2003-10-06 | CVE-2003-0742 | Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6/5.0.7 SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program. | 7.2 |
2002-10-28 | CVE-2002-1199 | Local File Disclosure vulnerability in ypxfrd The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. | 5.0 |
2002-07-26 | CVE-2002-0716 | Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6 Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument. | 7.2 |
2001-12-31 | CVE-2001-1508 | Buffer Overflow vulnerability in SCO OpenServer lpstat Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitrary code as group bin via a long command line argument. | 4.6 |
2001-12-12 | CVE-2001-0797 | Buffer Overflow vulnerability in Multiple Vendor System V Derived 'login' Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin. | 10.0 |
2001-11-30 | CVE-2001-0896 | Denial-Of-Service vulnerability in SCO Openserver 5.0.5 Inetd in OpenServer 5.0.5 allows remote attackers to cause a denial of service (crash) via a port scan, e.g. | 5.0 |