CVSS: 9.8EPSS: 5%CPEs: 9EXPL: 4CVE-2006-0072 – SCO OpenServer 5.0.7 - 'termsh' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2006-0072
04 Jan 2006 — Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector. • https://www.exploit-db.com/exploits/1402 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2005-2926
https://notcve.org/view.php?id=CVE-2005-2926
25 Oct 2005 — Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.40/SCOSA-2005.40.txt •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2005-0351
https://notcve.org/view.php?id=CVE-2005-0351
07 Apr 2005 — Buffer overflow in (1) termsh, (2) atcronsh, and (3) auditsh in SCO OpenServer 5.0.6 and 5.0.7 might allow local users to execute arbitrary code via a long HOME environment variable. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.15/SCOSA-2005.15.txt • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 2CVE-2005-0993 – SCO OpenServer 5.0.6/5.0.7 - NWPrint Command Line Argument Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2005-0993
07 Apr 2005 — Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users to execute arbitrary code via a long command line argument. • https://www.exploit-db.com/exploits/25333 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2004-1131
https://notcve.org/view.php?id=CVE-2004-1131
07 Feb 2005 — Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.13/SCOSA-2005.13.txt •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2003-1021
https://notcve.org/view.php?id=CVE-2003-1021
26 Jan 2005 — The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.5/SCOSA-2005.5.txt •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2004-1039
https://notcve.org/view.php?id=CVE-2004-1039
11 Jan 2005 — The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a series of requests, which causes inetd to launch a separate process for each request. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.1/SCOSA-2005.1.txt •
CVSS: 9.8EPSS: 3%CPEs: 3EXPL: 1CVE-2004-0390 – SCO OpenServer 5.0.x - StartX Weak XHost Permissions
https://notcve.org/view.php?id=CVE-2004-0390
31 Dec 2004 — SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods. • https://www.exploit-db.com/exploits/20851 •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 2CVE-2004-0510 – SCO OpenServer 5.0.7 - MMDF deliver Privilege Escalation
https://notcve.org/view.php?id=CVE-2004-0510
28 Oct 2004 — Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program. Múltiples desbordamientos de búfer en MMDF sobre OpenServer 5.0.6 y 5.0.7, y posiblemente otros sistemas operativos, puede permitir a atacantes ejecutar código de su elección, como se ha demostrado utilizando el programa execmail • https://www.exploit-db.com/exploits/602 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 2CVE-2004-0511 – SCO Multi-channel Memorandum Distribution Facility - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2004-0511
28 Oct 2004 — Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a null dereference. Múltiples vulnerabilidades desconocidas en MMDF sobre OpenServer 5.0.6 y 5.0.7, y posiblemente otros sistemas operativos, pueden permitir a atacantes causar una denegación de servicio disparando una desreferencia nula. • https://www.exploit-db.com/exploits/24293 •