High

DATE	CVE	VULNERABILITY TITLE	RISK
2004-11-23	CVE-2004-0079	NULL Pointer Dereference vulnerability in multiple products The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. network low complexity cisco symantec hp avaya redhat freebsd openbsd apple sco 4d checkpoint dell lite neoteris novell openssl sgi stonesoft tarantella vmware bluecoat securecomputing sun CWE-476	7.5
2004-02-03	CVE-2004-1082	mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials. network low complexity apache apple avaya hp ibm openbsd sco sun	7.5
2003-12-01	CVE-2003-0834	Local Buffer Overflow vulnerability in SCO Open Unix and Unixware Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME. local low complexity sco	7.2
2003-10-06	CVE-2003-0742	Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6/5.0.7 SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program. local low complexity sco	7.2
2003-08-27	CVE-2003-0597	Unspecified vulnerability in SCO Openserver 5.0.6/5.0.7 Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges. local low complexity sco	7.2
2002-12-31	CVE-2002-1998	Remote Security vulnerability in SCO Open Unix and Unixware Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21). network low complexity sco	7.5
2002-07-26	CVE-2002-0716	Unspecified vulnerability in SCO Openserver 5.0.5/5.0.6 Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument. local low complexity sco	7.2
2001-08-22	CVE-2001-0587	Buffer Overflow vulnerability in SCO Openserver 5.0.6 deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command. local low complexity sco	7.2
2001-08-22	CVE-2001-0579	Remote Security vulnerability in Openserver lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first argument to the command. network low complexity sco	7.5
2001-08-22	CVE-2001-0577	Local Security vulnerability in Openserver recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first command line argument. local low complexity sco	7.2