Sco Unixware vulnerabilities

CVE-2002-1998 [HIGH] CVE-2002-1998: Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to exe Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21).

CVE-2002-1323 [MEDIUM] CVE-2002-1323: Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls.

CVE-2001-1579 [MEDIUM] CVE-2001-1579: The timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0 does not properly terminate certain st The timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0 does not properly terminate certain strings with a null, which allows remote attackers to cause a denial of service.

CVE-2000-0348 [CRITICAL] CVE-2000-0348: A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 an A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges.

CVE-2000-0308 [CRITICAL] CVE-2000-0308: Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges.

CVE-2000-0307 [MEDIUM] CVE-2000-0307: Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.

CVE-2000-0351 [MEDIUM] CVE-2000-0351: Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages.

CVE-2000-0349 [MEDIUM] CVE-2000-0349: Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of s Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service.

CVE-2000-1014 [HIGH] CVE-2000-1014: Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 al Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText parameter.

CVE-2000-0842 [MEDIUM] CVE-2000-0842: The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbi The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack.

CVE-1999-0979 [HIGH] CVE-1999-0979: The SCO UnixWare privileged process system allows local users to gain root privileges by using a deb The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed.

CVE-2000-0173 [MEDIUM] CVE-2000-0173: Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service.

CVE-1999-0693 [HIGH] CVE-1999-0693: Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.

CVE-2000-0154 [LOW] CVE-2000-0154: The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack.

CVE-2000-0224 [LOW] CVE-2000-0224: ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink atta ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack.

CVE-2000-0215 [HIGH] CVE-2000-0215: Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges. Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges.

CVE-2000-0130 [HIGH] CVE-2000-0130: Buffer overflow in SCO scohelp program allows remote attackers to execute commands. Buffer overflow in SCO scohelp program allows remote attackers to execute commands.

CVE-2000-0099 [HIGH] CVE-2000-0099: Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument.

CVE-2000-0029 [MEDIUM] CVE-2000-0029: UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack. UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.

CVE-2000-0026 [CRITICAL] CVE-2000-0026: Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.