Vulnerabilities > SCO > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-12-31 | CVE-2005-3625 | Resource Management Errors vulnerability in multiple products Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU spins." network low complexity easy-software-products kde libextractor poppler sgi tetex xpdf conectiva debian gentoo mandrakesoft redhat sco slackware suse trustix turbolinux ubuntu CWE-399 critical | 10.0 |
| 2003-10-07 | CVE-2003-0791 | Deserialization of Untrusted Data vulnerability in multiple products The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as input to the script.thaw JavaScript function, which is then deserialized and executed. | 9.8 |
| 2001-12-12 | CVE-2001-0797 | Buffer Overflow vulnerability in Multiple Vendor System V Derived 'login' Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin. | 10.0 |
| 2001-03-12 | CVE-2000-0348 | Unspecified vulnerability in SCO Unixware A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges. | 10.0 |
| 2001-03-12 | CVE-2000-0308 | Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges. | 10.0 |
| 1999-12-30 | CVE-2000-0003 | Unspecified vulnerability in SCO Unixware Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable. | 10.0 |
| 1999-12-21 | CVE-2000-0026 | Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string. | 10.0 |
| 1999-11-10 | CVE-1999-0835 | Denial of service in BIND named via malformed SIG records. | 10.0 |
| 1999-02-09 | CVE-1999-0368 | Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. network low complexity washington-university proftpd-project sco slackware redhat debian caldera critical | 10.0 |
| 1998-12-04 | CVE-1999-0798 | Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type. | 10.0 |