CVSS: 7.5EPSS: 0%CPEs: 252EXPL: 0CVE-2004-0079
https://notcve.org/view.php?id=CVE-2004-0079
18 Mar 2004 — The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference. La función do_change_cipher_spec en OpenSSL 0.9.6c hasta 0.9.6.k y 0.9.7a hasta 0.9.7c permite que atacantes remotos provoquen una denegación de servicio (caída) mediante una hábil unión SSL/TLS que provoca un puntero nulo. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:05.openssl.asc • CWE-476: NULL Pointer Dereference •
CVSS: 9.1EPSS: 0%CPEs: 47EXPL: 0CVE-2004-1082
https://notcve.org/view.php?id=CVE-2004-1082
03 Feb 2004 — mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials. • http://lists.apple.com/archives/security-announce/2004/Dec/msg00000.html •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2004-1124
https://notcve.org/view.php?id=CVE-2004-1124
14 Jan 2004 — Unknown vulnerability in chroot on SCO UnixWare 7.1.1 through 7.1.4 allows local users to escape the chroot jail and conduct unauthorized activities. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.22/SCOSA-2005.22.txt •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0872
https://notcve.org/view.php?id=CVE-2003-0872
25 Oct 2003 — Certain scripts in OpenServer before 5.0.6 allow local users to overwrite files and conduct other unauthorized activities via a symlink attack on temporary files. Ciertos scripts en OpenServer anteriores a 5.0.6 permite a usuarios locales sobreescribir ficheros y conducir otras activades no autorizadas mediante un ataque de enlaces simbólicos sobre ficheros temporales. • ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.27/CSSA-2003-SCO.27.txt •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 0CVE-2003-0791
https://notcve.org/view.php?id=CVE-2003-0791
07 Oct 2003 — The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as input to the script.thaw JavaScript function, which is then deserialized and executed. • http://secunia.com/advisories/11103 • CWE-502: Deserialization of Untrusted Data •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2003-0742
https://notcve.org/view.php?id=CVE-2003-0742
19 Sep 2003 — SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program. SCO Internet Manager (mana) permite a usuarios locales ejecutar programas arbitrarios estableciendo la variable de entorno REMOTE_ADDR de forma que haga que menu.mana se ejecute como si fuera llamado desde ncsa_httpd, y entonces modif... • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2003-0742 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2003-0658
https://notcve.org/view.php?id=CVE-2003-0658
03 Sep 2003 — Docview before 1.1-18 in Caldera OpenLinux 3.1.1, SCO Linux 4.0, OpenServer 5.0.7, configures the Apache web server in a way that allows remote attackers to read arbitrary publicly readable files via a certain URL, possibly related to rewrite rules. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2003-0658 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2003-0597
https://notcve.org/view.php?id=CVE-2003-0597
25 Jul 2003 — Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges. Vulnerabilidad desconocida en la visualización de Merge anteriores a 5.3.23a en UnixWare 7.1x permite a usuarios locales ganar privilegios de root. • http://marc.info/?l=bugtraq&m=105889063714201&w=2 •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 0CVE-2002-1199
https://notcve.org/view.php?id=CVE-2002-1199
28 Oct 2002 — The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments. El procedimiento getdbm en ypxfrd permite a usuarios locales leer ficheros arbitrarios, y a atacantes remotos leer bases de datos fuera de /var/yp, mediante ataques de atravesamiento de directorios y de enlaces simbólicos en los argumentos de dominio y mapa. • ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2002-0887 – Caldera OpenServer 5.0.5/5.0.6 - SCOAdmin Symbolic Link
https://notcve.org/view.php?id=CVE-2002-0887
04 Oct 2002 — scoadmin for Caldera/SCO OpenServer 5.0.5 and 5.0.6 allows local users to overwrite arbitrary files via a symlink attack on temporary files, as demonstrated using log files. • https://www.exploit-db.com/exploits/21489 •