cbcvebase.

Sco Openserver vulnerabilities

68 known vulnerabilities affecting sco/openserver.

Total CVEs
68
CISA KEV
0
Public exploits
19
Exploited in wild
1
Severity breakdown
CRITICAL7HIGH25MEDIUM28LOW8

Vulnerabilities

Page 1 of 4
CVE-2001-0797P2CRITICALCVSS 10.0ExploitedPoCv5.0v5.0.1+6 more2001-12-12
CVE-2001-0797 [CRITICAL] CVE-2001-0797: Buffer overflow in login in various System V based operating systems allows remote attackers to exec Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
nvd
CVE-1999-0368P3CRITICALCVSS 10.0PoCv5.0v5.0.2+3 more1999-02-09
CVE-1999-0368 [CRITICAL] CVE-1999-0368: Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.
nvd
CVE-1999-0128P4MEDIUMCVSS 5.0PoCv5.0v5.0.21996-12-18
CVE-1999-0128 [MEDIUM] CVE-1999-0128: Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
nvd
CVE-2000-0306P3CRITICALCVSS 10.0PoC≤ 5.042001-03-12
CVE-2000-0306 [CRITICAL] CVE-2000-0306: Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a lon Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.
nvd
CVE-2004-0390P3HIGHCVSS 7.5PoCv5.0.5v5.0.6+1 more2004-12-31
CVE-2004-0390 [HIGH] CVE-2004-0390: SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in u SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods.
nvd
CVE-2006-0072P3HIGHCVSS 7.5PoCv5.0v5.0.1+7 more2006-01-04
CVE-2006-0072 [HIGH] CVE-2006-0072: Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.
nvd
CVE-2001-0579P4HIGHCVSS 7.5PoC≤ 5.0.62001-08-22
CVE-2001-0579 [HIGH] CVE-2001-0579: lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffe lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first argument to the command.
nvd
CVE-2004-0510P4HIGHCVSS 7.2PoCv5.0.6v5.0.6a+1 more2004-12-23
CVE-2004-0510 [HIGH] CVE-2004-0510: Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating system Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.
nvd
CVE-1999-0153P4MEDIUMCVSS 5.0PoCv5.01997-07-01
CVE-1999-0153 [MEDIUM] CVE-1999-0153: Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke. Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
nvd
CVE-1999-1185P4HIGHCVSS 7.2PoCv3.0v5.01998-10-06
CVE-1999-1185 [HIGH] CVE-1999-1185: Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file.
nvd
CVE-1999-0023P4HIGHCVSS 7.2PoCv2.0v5.0+1 more1996-07-24
CVE-1999-0023 [HIGH] CVE-1999-0023: Local user gains root privileges via buffer overflow in rdist, via lookup() function. Local user gains root privileges via buffer overflow in rdist, via lookup() function.
nvd
CVE-1999-1041P4HIGHCVSS 7.2PoCv5.01998-08-27
CVE-1999-1041 [HIGH] CVE-1999-1041: Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.
nvd
CVE-2001-0577P4HIGHCVSS 7.2PoC≤ 5.0.62001-08-22
CVE-2001-0577 [HIGH] CVE-2001-0577: recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges v recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first command line argument.
nvd
CVE-2005-0993P4MEDIUMCVSS 4.6PoCv5.0.6v5.0.72005-05-02
CVE-2005-0993 [MEDIUM] CVE-2005-0993: Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users to execute arbitrary code via Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users to execute arbitrary code via a long command line argument.
nvd
CVE-2001-0576P4MEDIUMCVSS 4.6PoC≤ 5.0.62001-08-22
CVE-2001-0576 [MEDIUM] CWE-119 CVE-2001-0576: lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additiona lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additional privileges via a buffer overflow attack in the '-u' command line parameter.
nvd
CVE-2004-1082P4HIGHCVSS 7.5v5.0.6v5.0.72004-02-03
CVE-2004-1082 [HIGH] CVE-2004-1082: mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials.
nvd
CVE-2001-0575P4MEDIUMCVSS 4.6PoCv5.0.62001-08-22
CVE-2001-0575 [MEDIUM] CVE-2001-0575: Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional priv Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut.
nvd
CVE-2001-0578P4MEDIUMCVSS 4.6PoC≤ 5.0.62001-08-22
CVE-2001-0578 [MEDIUM] CVE-2001-0578: Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command.
nvd
CVE-2004-0079P4HIGHCVSS 7.5v5.0.6v5.0.72004-11-23
CVE-2004-0079 [HIGH] CWE-476 CVE-2004-0079: The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
nvd
CVE-1999-1138P4CRITICALCVSS 10.0v3.01993-09-17
CVE-1999-1138 [CRITICAL] CVE-1999-1138: SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp fo SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable.
nvd
Sco Openserver vulnerabilities | cvebase