CVE-2005-2926

3 documents3 sources

Severity

4.6MEDIUM

EPSS

0.2%

top 61.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SCO Openserver

Timeline

PublishedOct 25

Latest updateMay 3

Description

Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDsco/openserver5.0.7

Patches

Patch: ftp.sco.com ↗Patch: ftp.sco.com ↗

🔴Vulnerability Details

GHSA

GHSA-prrq-w62p-245h: Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5↗2022-05-03

▶

CVEList

CVE-2005-2926: Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5↗2005-10-25

▶