Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-0072

4 documents4 sources
Severity
7.5HIGH
EPSS
5.4%
top 9.88%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
SCO Openserver
Timeline
PublishedJan 4
Latest updateMay 1

Description

Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDsco/openserver9 versions+8

🔴Vulnerability Details

2
GHSA
GHSA-mhrx-3jhc-rg45: Buffer overflow in termsh on SCO OpenServer 52022-05-01
CVEList
CVE-2006-0072: Buffer overflow in termsh on SCO OpenServer 52006-01-04

💥Exploits & PoCs

1
Exploit-DB
SCO OpenServer 5.0.7 - 'termsh' Local Privilege Escalation2006-01-03
CVE-2006-0072 (HIGH CVSS 7.5) | Buffer overflow in termsh on SCO Op | cvebase.io