NotCVE - vendor:"Sco" product:"Openserver" version:" <= 5.0.5"

52 results (0.020 seconds)

CVSS: 7.5EPSS: 3%CPEs: 9EXPL: 4

CVE-2006-0072 – SCO OpenServer 5.0.7 - 'termsh' Local Privilege Escalation

https://notcve.org/view.php?id=CVE-2006-0072

Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector. • https://www.exploit-db.com/exploits/1402 http://downloads.securityfocus.com/vulnerabilities/exploits/Openserver_bof.c http://www.securityfocus.com/archive/1/420677 http://www.securityfocus.com/bid/16122 •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 0

CVE-2005-2926

https://notcve.org/view.php?id=CVE-2005-2926

Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.40/SCOSA-2005.40.txt http://secunia.com/advisories/17274 http://securitytracker.com/id?1015099 http://www.idefense.com/application/poi/display?type=vulnerabilities http://www.osvdb.org/20153 http://www.osvdb.org/20154 http://www.securityfocus.com/bid/15160 •

CVSS: 7.2EPSS: 0%CPEs: 9EXPL: 0

CVE-2003-1021

https://notcve.org/view.php?id=CVE-2003-1021

The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.5/SCOSA-2005.5.txt http://secunia.com/advisories/14012 http://www.kb.cert.org/vuls/id/972598 http://www.securityfocus.com/bid/12372 https://exchange.xforce.ibmcloud.com/vulnerabilities/19479 •

CVSS: 7.5EPSS: 3%CPEs: 3EXPL: 1

CVE-2004-0390 – SCO OpenServer 5.0.x - StartX Weak XHost Permissions

https://notcve.org/view.php?id=CVE-2004-0390

SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods. • https://www.exploit-db.com/exploits/20851 http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0424.html http://www.securityfocus.com/advisories/6684 https://exchange.xforce.ibmcloud.com/vulnerabilities/16113 •

CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2003-0872

https://notcve.org/view.php?id=CVE-2003-0872

Certain scripts in OpenServer before 5.0.6 allow local users to overwrite files and conduct other unauthorized activities via a symlink attack on temporary files. Ciertos scripts en OpenServer anteriores a 5.0.6 permite a usuarios locales sobreescribir ficheros y conducir otras activades no autorizadas mediante un ataque de enlaces simbólicos sobre ficheros temporales. • ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.27/CSSA-2003-SCO.27.txt http://www.securityfocus.com/bid/8864 •

1 2 3 4 5