CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2132
https://notcve.org/view.php?id=CVE-2005-2132
03 Aug 2005 — RPC portmapper (rpcbind) in SCO UnixWare 7.1.1 m5, 7.1.3 mp5, and 7.1.4 mp2 allows remote attackers or local users to cause a denial of service (lack of response) via multiple invalid portmap requests. RPC portmapper (rpcbind) en SCO UnixWare 7.1.1 m5, 7.1.3 mp5, y 7.1.4 mp2 permite que atacantes remotos o usuarios locales causen una dengación de servicio (falta de respuesta) mediante múltiples peticiones portmap inválidas. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.31/SCOSA-2005.31.txt •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2005-0134
https://notcve.org/view.php?id=CVE-2005-0134
18 May 2005 — The X server in SCO UnixWare 7.1.1, 7.1.3, and 7.1.4 does not properly create socket directories in /tmp, which could allow attackers to hijack local sockets. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.8/SCOSA-2005.8.txt •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2004-1039
https://notcve.org/view.php?id=CVE-2004-1039
11 Jan 2005 — The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a series of requests, which causes inetd to launch a separate process for each request. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.1/SCOSA-2005.1.txt •
CVSS: 5.5EPSS: 0%CPEs: 21EXPL: 3CVE-2004-0996 – Cscope 13.0/15.x - Insecure Temporary File Creation
https://notcve.org/view.php?id=CVE-2004-0996
01 Dec 2004 — main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack. main.c de cscope 15-4 y 15-5 crea ficheros temporales con nombres predecibles, lo que permite a usuarios locales sobreescribir ficheros de su elección mediante un ataque de enlaces simbólicos. • https://www.exploit-db.com/exploits/24750 •
CVSS: 7.5EPSS: 8%CPEs: 20EXPL: 8CVE-2004-0230 – TCP Connection Reset - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2004-0230
05 May 2004 — TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP. TCP, cuando se usa un tamaño de ventana de transmisión grande, hace más fácil a atacantes remotos adivinar números de secuencia y causar una denegación de servicio (pérdida de la conexión) en conexiones TCP persistentes in... • https://www.exploit-db.com/exploits/291 •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2004-1124
https://notcve.org/view.php?id=CVE-2004-1124
14 Jan 2004 — Unknown vulnerability in chroot on SCO UnixWare 7.1.1 through 7.1.4 allows local users to escape the chroot jail and conduct unauthorized activities. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.22/SCOSA-2005.22.txt •
CVSS: 4.6EPSS: 0%CPEs: 3EXPL: 0CVE-2003-0937
https://notcve.org/view.php?id=CVE-2003-0937
18 Nov 2003 — SCO UnixWare 7.1.1, 7.1.3, and Open UNIX 8.0.0 allows local users to bypass protections for the "as" address space file for a process ID (PID) by obtaining a procfs file descriptor for the file and calling execve() on a setuid or setgid program, which leaves the descriptor open to the user. SCO UnixWare 7.1.1, 7.1.3, y Open UNIX 8.0.0 permite que usuarios locales se salten protecciones para un PID de proceso obteniendo un descriptor de fichero procfs para el fichero y llamando a execve() en un programa con ... • ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.32/CSSA-2003-SCO.32.txt •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 2CVE-2003-0834 – Solaris 7/8/9 CDE LibDTHelp - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2003-0834
06 Nov 2003 — Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME. Desbordamiento de búfer en la librería libDtHelp de CDE permite a usuarios locales ejecutar código arbitrario mediante una variable de entorno DTHELPUSSEARCHPATH modificada en la característica "Help". • https://www.exploit-db.com/exploits/713 •
CVSS: 9.8EPSS: 0%CPEs: 48EXPL: 0CVE-2002-1323
https://notcve.org/view.php?id=CVE-2002-1323
11 Dec 2002 — Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls. Safe.pm 2.0.7 y anteriores, si se usan con Perl 5.8.0 y anteriores, pueden permitir a atacantes escapar de compartimientos seguros en Safe::reval o Safe::rdo usando una variable @_ redefinida, que no es reestablecida entre llamadas sucesivas. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2004-007.0.txt •
CVSS: 9.8EPSS: 23%CPEs: 46EXPL: 0CVE-2002-0677
https://notcve.org/view.php?id=CVE-2002-0677
12 Jul 2002 — CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. El sevidor de bases de datos CDE ToolTalk (ttdbserver) permite a atacantes remotos sobrescribir posiciones arbitrarias de memoria con ceros, y posiblemente ganar privilegios, mediante un arguemnte de descriptor de fichero en una llamada al... • ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt •