CVE-1999-0411
published 1999-03-07CVE-1999-0411: Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack…
PriorityP420high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.40%
31.7th percentile
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack, allowing a local user to gain root access.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sco | openserver | — | — |
| sco | openserver | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
SCO OpenServer 3.0/5 Startup Scripts S89nfs symlink
vuldb·2026-04-19·CVSS 7.2
CVE-1999-0411 [HIGH] SCO OpenServer 3.0/5 Startup Scripts S89nfs symlink
A vulnerability marked as problematic has been reported in SCO OpenServer 3.0/5. This issue affects some unknown processing of the file S84rpcinit/S95nis/S85tcp/S89nfs of the component Startup Scripts. This manipulation causes symlink following.
This vulnerability is tracked as CVE-1999-0411. The attack is restricted to local execution. No exploit exists.
It is suggested to upgrade the affected component.
GHSA
GHSA-w5mv-gqvq-qwgr: Several startup scripts in SCO OpenServer Enterprise System v 5
ghsa_unreviewed·2022-04-30
CVE-1999-0411 [HIGH] GHSA-w5mv-gqvq-qwgr: Several startup scripts in SCO OpenServer Enterprise System v 5
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack, allowing a local user to gain root access.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
1999-03-07
Published