CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 4CVE-2006-4655 – X11R6 < 6.4 XKEYBOARD (sco x86) - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-4655
09 Sep 2006 — Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value. Desbordamiento de búfer en función Strcmp en la extensión XKEYBOARD en Window System X11R6.4 y anteriores, según lo utilizado en SCO UnixWare 7.1.3 y Sun Solaris 8 hasta la 10, permite a un usuario local subir privilegios a través del valor de la larga var... • https://www.exploit-db.com/exploits/2332 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2005-2934 – SCO Unixware 7.1.3 - 'ptrace' Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2005-2934
31 Dec 2005 — Unspecified vulnerability in ptrace in SCO UnixWare 7.1.3 and 7.1.4 allows local users to gain privileges via unspecified vectors. Local exploitation of an access validation error in SCO Unixware allows attackers to gain root privileges. The vulnerability specifically exists due to a failure to check permissions on traced executables. The ptrace() system call provides an interface for debugging other processes on the system. SCO Unixware's implementation of the ptrace system call fails to check for setuid p... • https://www.exploit-db.com/exploits/1534 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2005-3903 – iDEFENSE Security Advisory 2005-12-12.t
https://notcve.org/view.php?id=CVE-2005-3903
14 Dec 2005 — Buffer overflow in uidadmin in SCO Unixware 7.1.3 and 7.1.4 allows local users to execute arbitrary code via a -S (scheme) argument that specifies a large file, a different vulnerability than CVE-2001-1063. Local exploitation of a buffer overflow vulnerability in the uidadmin binary included in multiple versions of The SCO Group Inc.'s Unixware allows attackers to gain root privileges. iDefense has confirmed the existence of this vulnerability in SCO Unixware versions 7.1.3 and 7.1.4. All previous versions ... • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.54 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2005-2927
https://notcve.org/view.php?id=CVE-2005-2927
25 Oct 2005 — Stack-based buffer overflow in ppp in SCO Unixware 7.1.3 and 7.1.4, and possibly earlier versions, allows local users to execute arbitrary code via a long argument to the (1) prompt or (2) defprompt command. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.41/SCOSA-2005.41.txt •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2132 – NILESA-20050701.txt
https://notcve.org/view.php?id=CVE-2005-2132
28 Jul 2005 — RPC portmapper (rpcbind) in SCO UnixWare 7.1.1 m5, 7.1.3 mp5, and 7.1.4 mp2 allows remote attackers or local users to cause a denial of service (lack of response) via multiple invalid portmap requests. RPC portmapper (rpcbind) en SCO UnixWare 7.1.1 m5, 7.1.3 mp5, y 7.1.4 mp2 permite que atacantes remotos o usuarios locales causen una dengación de servicio (falta de respuesta) mediante múltiples peticiones portmap inválidas. When the RPC portmapper (rpcbind) receives an invalid portmap request from a remote ... • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.31/SCOSA-2005.31.txt •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2005-0134
https://notcve.org/view.php?id=CVE-2005-0134
18 May 2005 — The X server in SCO UnixWare 7.1.1, 7.1.3, and 7.1.4 does not properly create socket directories in /tmp, which could allow attackers to hijack local sockets. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.8/SCOSA-2005.8.txt •
CVSS: 5.6EPSS: 0%CPEs: 121EXPL: 0CVE-2005-0109 – FreeBSD-SA-05-09.htt.txt
https://notcve.org/view.php?id=CVE-2005-0109
05 Mar 2005 — Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses. When running on processors supporting Hyper-Threading Technology, it is possible for a malicious thread to monitor the execution of another thread. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.24/SCOSA-2005.24.txt •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2004-1039 – NILESA-20050101.txt
https://notcve.org/view.php?id=CVE-2004-1039
11 Jan 2005 — The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a series of requests, which causes inetd to launch a separate process for each request. SCO UnixWare mountd suffers from a denial of service vulnerability. Versions 7.1.4, 7.1.3, 7.1.1, and 7.0.1 are affected. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.1/SCOSA-2005.1.txt •
CVSS: 5.5EPSS: 0%CPEs: 21EXPL: 3CVE-2004-0996 – Cscope 13.0/15.x - Insecure Temporary File Creation
https://notcve.org/view.php?id=CVE-2004-0996
01 Dec 2004 — main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack. main.c de cscope 15-4 y 15-5 crea ficheros temporales con nombres predecibles, lo que permite a usuarios locales sobreescribir ficheros de su elección mediante un ataque de enlaces simbólicos. cscope creates temporary files with an easily predictable file name. A local attacker could exploit this vulnerability and possibly gain elevated privileges on ... • https://www.exploit-db.com/exploits/24750 •
CVSS: 7.5EPSS: 11%CPEs: 20EXPL: 16CVE-2004-0230 – TCP Connection Reset - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2004-0230
22 Apr 2004 — TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP. TCP, cuando se usa un tamaño de ventana de transmisión grande, hace más fácil a atacantes remotos adivinar números de secuencia y causar una denegación de servicio (pérdida de la conexión) en conexiones TCP persistentes in... • https://packetstorm.news/files/id/33202 •