Santa Cruz Operation (SCO) OpenServer 5.0.6

CPE Details

Santa Cruz Operation (SCO) OpenServer 5.0.6
5.0.6
2024-12-26
14h29 +00:00
2024-12-26
14h29 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:sco:openserver:5.0.6:*:*:*:*:*:*:*

Informations

Vendor

sco

Product

openserver

Version

5.0.6

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2006-0072 2006-01-03 23h00 +00:00 Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.
7.5
CVE-2005-2926 2005-10-25 02h00 +00:00 Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable.
4.6
CVE-2001-1578 2005-08-05 04h00 +00:00 Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors.
2.1
CVE-2004-1082 2005-04-21 02h00 +00:00 mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials.
7.5
CVE-2004-0390 2005-04-14 02h00 +00:00 SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods.
7.5
CVE-2005-0351 2005-04-09 02h00 +00:00 Buffer overflow in (1) termsh, (2) atcronsh, and (3) auditsh in SCO OpenServer 5.0.6 and 5.0.7 might allow local users to execute arbitrary code via a long HOME environment variable.
4.6
CVE-2005-0993 2005-04-07 02h00 +00:00 Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users to execute arbitrary code via a long command line argument.
4.6
CVE-2004-1131 2005-02-08 04h00 +00:00 Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments.
7.2
CVE-2003-1021 2005-02-06 04h00 +00:00 The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline.
7.2
CVE-2004-1124 2005-01-29 04h00 +00:00 Unknown vulnerability in chroot on SCO UnixWare 7.1.1 through 7.1.4 allows local users to escape the chroot jail and conduct unauthorized activities.
4.6
CVE-2004-1039 2005-01-19 04h00 +00:00 The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a series of requests, which causes inetd to launch a separate process for each request.
5
CVE-2004-0510 2004-10-28 02h00 +00:00 Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.
7.2
CVE-2004-0511 2004-10-28 02h00 +00:00 Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a null dereference.
2.1
CVE-2004-0512 2004-10-28 02h00 +00:00 Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a core dump.
2.1
CVE-2002-1199 2004-09-01 02h00 +00:00 The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.
5
CVE-2004-0079 2004-03-18 04h00 +00:00 The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
7.5
High
CVE-2004-0081 2004-03-18 04h00 +00:00 OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
5
CVE-2004-0112 2004-03-18 04h00 +00:00 The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.
5
CVE-2003-0742 2003-09-19 02h00 +00:00 SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program.
7.2
CVE-2003-0597 2003-07-25 02h00 +00:00 Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges.
7.2
CVE-2002-0716 2003-04-02 03h00 +00:00 Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument.
7.2
CVE-2001-0797 2002-06-25 02h00 +00:00 Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
10
CVE-2001-1148 2002-03-15 04h00 +00:00 Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh.
4.6
CVE-2001-0627 2002-03-09 04h00 +00:00 vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files via a symlink attack.
3.7
CVE-2001-0575 2001-07-27 02h00 +00:00 Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut.
4.6
CVE-2001-0576 2001-07-27 02h00 +00:00 lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additional privileges via a buffer overflow attack in the '-u' command line parameter.
4.6
CVE-2001-0577 2001-07-27 02h00 +00:00 recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first command line argument.
7.2
CVE-2001-0578 2001-07-27 02h00 +00:00 Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command.
4.6
CVE-2001-0579 2001-07-27 02h00 +00:00 lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first argument to the command.
7.5
CVE-2001-0587 2001-07-27 02h00 +00:00 deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.
7.2
CVE-2001-0588 2001-07-27 02h00 +00:00 sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.
4.6
CVE-2000-0306 2001-05-07 02h00 +00:00 Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.
10
CVE-2000-0307 2001-05-07 02h00 +00:00 Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.
5
CVE-1999-0476 2000-02-04 04h00 +00:00 A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user.
7.2
CVE-1999-0798 2000-02-04 04h00 +00:00 Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.
10