Sco Openserver vulnerabilities
68 known vulnerabilities affecting sco/openserver.
Total CVEs
68
CISA KEV
0
Public exploits
19
Exploited in wild
0
Severity breakdown
CRITICAL7HIGH25MEDIUM28LOW8
Vulnerabilities
Page 3 of 4
CVE-2000-0158HIGHCVSS 7.5v5.0v5.0.2+2 more2000-02-16
CVE-2000-0158 [HIGH] CVE-2000-0158: Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM comma
Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon.
nvd
CVE-2000-0147LOWCVSS 2.1v5.0.52000-02-08
CVE-2000-0147 [LOW] CVE-2000-0147: snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local
snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration.
nvd
CVE-1999-0835CRITICALCVSS 10.0v51999-11-10
CVE-1999-0835 [CRITICAL] CVE-1999-0835: Denial of service in BIND named via malformed SIG records.
Denial of service in BIND named via malformed SIG records.
nvd
CVE-1999-1571HIGHCVSS 7.2v5.0.0v5.0.51999-11-04
CVE-1999-1571 [HIGH] CVE-1999-1571: Buffer overflow in sar for SCO OpenServer 5.0.0 through 5.0.5 may allow local users to gain root pri
Buffer overflow in sar for SCO OpenServer 5.0.0 through 5.0.5 may allow local users to gain root privileges via a long -f parameter, a different vulnerability than CVE-1999-1570.
nvd
CVE-1999-0893LOWCVSS 2.1PoCv5.01999-10-11
CVE-1999-0893 [LOW] CVE-1999-0893: userOsa in SCO OpenServer allows local users to corrupt files via a symlink attack.
userOsa in SCO OpenServer allows local users to corrupt files via a symlink attack.
nvd
CVE-1999-0697HIGHCVSS 7.2v5.0.4v5.0.51999-09-09
CVE-1999-0697 [HIGH] CVE-1999-0697: SCO Doctor allows local users to gain root privileges through a Tools option.
SCO Doctor allows local users to gain root privileges through a Tools option.
nvd
CVE-1999-0411HIGHCVSS 7.2v3.0v51999-03-07
CVE-1999-0411 [HIGH] CVE-1999-0411: Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis,
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack, allowing a local user to gain root access.
nvd
CVE-1999-0368CRITICALCVSS 10.0PoCv5.0v5.0.2+3 more1999-02-09
CVE-1999-0368 [CRITICAL] CVE-1999-0368: Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto
Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.
nvd
CVE-1999-1450HIGHCVSS 7.5≤ 5.0.5v5.0+2 more1999-01-27
CVE-1999-1450 [HIGH] CVE-1999-1450: Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges.
nvd
CVE-1999-1185HIGHCVSS 7.2PoCv3.0v5.01998-10-06
CVE-1999-1185 [HIGH] CVE-1999-1185: Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry
Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file.
nvd
CVE-1999-1041HIGHCVSS 7.2PoCv5.01998-08-27
CVE-1999-1041 [HIGH] CVE-1999-1041: Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root
Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.
nvd
CVE-1999-0011MEDIUMCVSS 5.4v5.01998-04-08
CVE-1999-0011 [MEDIUM] CWE-1067 CVE-1999-0011: Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer
Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.
nvd
CVE-1999-0010MEDIUMCVSS 5.0v5.01998-04-08
CVE-1999-0010 [MEDIUM] CVE-1999-0010: Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
nvd
CVE-1999-0017HIGHCVSS 7.5v5.0.41997-12-10
CVE-1999-0017 [HIGH] CVE-1999-0017: FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP clien
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
nvd
CVE-1999-1209HIGHCVSS 7.2v3.0v5.01997-11-20
CVE-1999-1209 [HIGH] CVE-1999-1209: Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local use
Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local users to gain root privileges.
nvd
CVE-1999-0024MEDIUMCVSS 5.0v5.01997-08-13
CVE-1999-0024 [MEDIUM] CVE-1999-0024: DNS cache poisoning via BIND, by predictable query IDs.
DNS cache poisoning via BIND, by predictable query IDs.
nvd
CVE-1999-0153MEDIUMCVSS 5.0PoCv5.01997-07-01
CVE-1999-0153 [MEDIUM] CVE-1999-0153: Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
nvd
CVE-1999-0033HIGHCVSS 7.2v3.0v5.01997-06-12
CVE-1999-0033 [HIGH] CVE-1999-0033: Command execution in Sun systems via buffer overflow in the at program.
Command execution in Sun systems via buffer overflow in the at program.
nvd
CVE-1999-0345MEDIUMCVSS 5.0v51997-01-01
CVE-1999-0345 [MEDIUM] CVE-1999-0345: Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.
Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.
nvd
CVE-1999-0128MEDIUMCVSS 5.0PoCv5.0v5.0.21996-12-18
CVE-1999-0128 [MEDIUM] CVE-1999-0128: Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
nvd