Vulnerabilities > SCO > Openserver
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-10-06 | CVE-2003-0742 | Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6/5.0.7 SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program. | 7.2 |
| 2003-08-27 | CVE-2003-0597 | Unspecified vulnerability in SCO Openserver 5.0.6/5.0.7 Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges. | 7.2 |
| 2002-10-28 | CVE-2002-1199 | Local File Disclosure vulnerability in ypxfrd The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. | 5.0 |
| 2002-07-26 | CVE-2002-0716 | Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6 Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument. | 7.2 |
| 2001-12-31 | CVE-2001-1578 | Local Security vulnerability in SCO Openserver 5.0.6 Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors. | 2.1 |
| 2001-12-31 | CVE-2001-1508 | Buffer Overflow vulnerability in SCO OpenServer lpstat Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitrary code as group bin via a long command line argument. | 4.6 |
| 2001-12-12 | CVE-2001-0797 | Buffer Overflow vulnerability in Multiple Vendor System V Derived 'login' Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin. | 10.0 |
| 2001-11-30 | CVE-2001-0896 | Denial-Of-Service vulnerability in SCO Openserver 5.0.5 Inetd in OpenServer 5.0.5 allows remote attackers to cause a denial of service (crash) via a port scan, e.g. | 5.0 |
| 2001-08-22 | CVE-2001-0627 | Unspecified vulnerability in SCO Openserver vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files via a symlink attack. | 3.7 |
| 2001-08-22 | CVE-2001-0588 | Local Security vulnerability in SCO Openserver 5.0.6 sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command. | 4.6 |