Vulnerabilities > SCO > Unixware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-05-06 | CVE-2009-1552 | Denial Of Service vulnerability in SCO Unixware 7.1.4 Unspecified vulnerability in the IGMP driver in SCO Unixware Release 7.1.4 Maintenance Pack 4 allows attackers to cause a denial of service (system panic) via unspecified vectors. | 7.8 |
| 2009-03-30 | CVE-2008-6559 | Improper Input Validation vulnerability in SCO Reliantha and Unixware Merge mcd in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges via a crafted -d argument that contains .. | 7.2 |
| 2009-03-30 | CVE-2008-6558 | Improper Input Validation vulnerability in multiple products Untrusted search path vulnerability in (1) hvdisp and (2) rcvm in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges by modifying the RELIANT_PATH environment variable to point to a malicious bin/hvenv program. | 7.2 |
| 2005-12-31 | CVE-2005-2934 | Local Privilege Escalation vulnerability in SCO Unixware 7.1.3/7.1.4 Unspecified vulnerability in ptrace in SCO UnixWare 7.1.3 and 7.1.4 allows local users to gain privileges via unspecified vectors. | 7.2 |
| 2005-10-25 | CVE-2005-2927 | Local Buffer Overflow vulnerability in SCO Unixware 7.1.3/7.1.4 Stack-based buffer overflow in ppp in SCO Unixware 7.1.3 and 7.1.4, and possibly earlier versions, allows local users to execute arbitrary code via a long argument to the (1) prompt or (2) defprompt command. | 7.2 |
| 2004-12-21 | CVE-2004-1307 | Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow. | 7.5 |
| 2003-12-01 | CVE-2003-0834 | Local Buffer Overflow vulnerability in SCO Open Unix and Unixware Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME. | 7.2 |
| 2002-12-31 | CVE-2002-1998 | Remote Security vulnerability in SCO Open Unix and Unixware Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21). | 7.5 |
| 2000-12-11 | CVE-2000-1014 | Unspecified vulnerability in SCO Unixware 7.0 Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText parameter. | 7.5 |
| 2000-04-11 | CVE-1999-0979 | Unspecified vulnerability in SCO Unixware The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed. | 7.2 |