Sco Openserver vulnerabilities

68 known vulnerabilities affecting sco/openserver.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL7HIGH25MEDIUM28LOW8

Vulnerabilities

Page 2 of 4

CVE-2003-0791CRITICALCVSS 9.8v5.0.72003-10-07

CVE-2003-0791 [CRITICAL] CWE-502 CVE-2003-0791: The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execut The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as input to the script.thaw JavaScript function, which is then deserialized and executed.

nvd

CVE-2003-0742HIGHCVSS 7.2v5.0.5v5.0.6+1 more2003-10-06

CVE-2003-0742 [HIGH] CVE-2003-0742: SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_A SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program.

nvd

CVE-2003-0597HIGHCVSS 7.2v5.0.6v5.0.72003-08-27

CVE-2003-0597 [HIGH] CVE-2003-0597: Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gai Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges.

nvd

CVE-2002-1199MEDIUMCVSS 5.0v5.0.5v5.0.6+1 more2002-10-28

CVE-2002-1199 [MEDIUM] CVE-2002-1199: The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to r The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.

nvd

CVE-2002-0716HIGHCVSS 7.2v5.0.5v5.0.62002-07-26

CVE-2002-0716 [HIGH] CVE-2002-0716: Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument.

nvd

CVE-2001-1508MEDIUMCVSS 4.6v5.0v5.0.1+5 more2001-12-31

CVE-2001-1508 [MEDIUM] CVE-2001-1508: Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitra Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitrary code as group bin via a long command line argument.

nvd

CVE-2001-1578LOWCVSS 2.1v5.0.62001-12-31

CVE-2001-1578 [LOW] CVE-2001-1578: Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical info Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors.

nvd

CVE-2001-0797CRITICALCVSS 10.0PoCv5.0v5.0.1+6 more2001-12-12

CVE-2001-0797 [CRITICAL] CVE-2001-0797: Buffer overflow in login in various System V based operating systems allows remote attackers to exec Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

nvd

CVE-2001-0896MEDIUMCVSS 5.0v5.0.52001-11-30

CVE-2001-0896 [MEDIUM] CVE-2001-0896: Inetd in OpenServer 5.0.5 allows remote attackers to cause a denial of service (crash) via a port sc Inetd in OpenServer 5.0.5 allows remote attackers to cause a denial of service (crash) via a port scan, e.g. with nmap -PO.

nvd

CVE-2001-0577HIGHCVSS 7.2PoC≤ 5.0.62001-08-22

CVE-2001-0577 [HIGH] CVE-2001-0577: recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges v recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first command line argument.

nvd

CVE-2001-0587HIGHCVSS 7.2v5.0.62001-08-22

CVE-2001-0587 [HIGH] CVE-2001-0587: deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additiona deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.

nvd

CVE-2001-0579HIGHCVSS 7.5PoC≤ 5.0.62001-08-22

CVE-2001-0579 [HIGH] CVE-2001-0579: lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffe lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first argument to the command.

nvd

CVE-2001-0588MEDIUMCVSS 4.6v5.0.62001-08-22

CVE-2001-0588 [MEDIUM] CVE-2001-0588: sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.

nvd

CVE-2001-0575MEDIUMCVSS 4.6PoCv5.0.62001-08-22

CVE-2001-0575 [MEDIUM] CVE-2001-0575: Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional priv Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut.

nvd

CVE-2001-0576MEDIUMCVSS 4.6PoC≤ 5.0.62001-08-22

CVE-2001-0576 [MEDIUM] CWE-119 CVE-2001-0576: lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additiona lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additional privileges via a buffer overflow attack in the '-u' command line parameter.

nvd

CVE-2001-0578MEDIUMCVSS 4.6PoC≤ 5.0.62001-08-22

CVE-2001-0578 [MEDIUM] CVE-2001-0578: Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command.

nvd

CVE-2001-0627LOWCVSS 3.7v5.0v5.0.1+5 more2001-08-22

CVE-2001-0627 [LOW] CVE-2001-0627: vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files via a symlink attack.

nvd

CVE-2001-1148MEDIUMCVSS 4.6≤ 5.0.6a2001-06-13

CVE-2001-1148 [MEDIUM] CVE-2001-1148: Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and ear Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh.

nvd

CVE-2000-0306CRITICALCVSS 10.0PoC≤ 5.042001-03-12

CVE-2000-0306 [CRITICAL] CVE-2000-0306: Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a lon Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.

nvd

CVE-2000-0307MEDIUMCVSS 5.0≤ 5.052001-03-12

CVE-2000-0307 [MEDIUM] CVE-2000-0307: Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.

nvd

← Previous2 / 4Next →