CVE-2006-0072 – SCO OpenServer 5.0.7 - 'termsh' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2006-0072
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector. • https://www.exploit-db.com/exploits/1402 http://downloads.securityfocus.com/vulnerabilities/exploits/Openserver_bof.c http://www.securityfocus.com/archive/1/420677 http://www.securityfocus.com/bid/16122 •
CVE-2005-2926
https://notcve.org/view.php?id=CVE-2005-2926
Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.40/SCOSA-2005.40.txt http://secunia.com/advisories/17274 http://securitytracker.com/id?1015099 http://www.idefense.com/application/poi/display?type=vulnerabilities http://www.osvdb.org/20153 http://www.osvdb.org/20154 http://www.securityfocus.com/bid/15160 •
CVE-2005-0351
https://notcve.org/view.php?id=CVE-2005-0351
Buffer overflow in (1) termsh, (2) atcronsh, and (3) auditsh in SCO OpenServer 5.0.6 and 5.0.7 might allow local users to execute arbitrary code via a long HOME environment variable. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.15/SCOSA-2005.15.txt http://www.securityfocus.com/bid/13062 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2005-0993 – SCO OpenServer 5.0.6/5.0.7 - NWPrint Command Line Argument Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2005-0993
Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users to execute arbitrary code via a long command line argument. • https://www.exploit-db.com/exploits/25333 http://marc.info/?l=bugtraq&m=111263251718491&w=2 http://www.securityfocus.com/bid/12986 •
CVE-2004-1131
https://notcve.org/view.php?id=CVE-2004-1131
Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.13/SCOSA-2005.13.txt http://www.securityfocus.com/bid/12474 https://exchange.xforce.ibmcloud.com/vulnerabilities/19243 •