High

DATE	CVE	VULNERABILITY TITLE	RISK
2006-01-04	CVE-2006-0072	Buffer Overflow vulnerability in SCO OpenServer Termsh Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. network low complexity sco	7.5
2005-02-07	CVE-2004-1131	Local Buffer Overflow vulnerability in SCO OpenServer Enable And Disable Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments. local low complexity sco	7.2
2005-01-26	CVE-2003-1021	Local Command Line Buffer Overflow vulnerability in SCO scosession The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline. local low complexity sco	7.2
2004-12-31	CVE-2004-0390	Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6/5.0.7 SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods. network low complexity sco	7.5
2004-11-23	CVE-2004-0079	NULL Pointer Dereference vulnerability in multiple products The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. network low complexity cisco symantec hp avaya redhat freebsd openbsd apple sco 4d checkpoint dell lite neoteris novell openssl sgi stonesoft tarantella vmware bluecoat securecomputing sun CWE-476	7.5
2004-02-03	CVE-2004-1082	mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials. network low complexity apache apple avaya hp ibm openbsd sco sun	7.5
2003-10-06	CVE-2003-0742	Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6/5.0.7 SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program. local low complexity sco	7.2
2003-08-27	CVE-2003-0597	Unspecified vulnerability in SCO Openserver 5.0.6/5.0.7 Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges. local low complexity sco	7.2
2002-07-26	CVE-2002-0716	Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6 Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument. local low complexity sco	7.2
2001-08-22	CVE-2001-0587	Buffer Overflow vulnerability in SCO Openserver 5.0.6 deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command. local low complexity sco	7.2