Filtered by vendor Sco
Subscribe
Total
128 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2002-1998 | 1 Sco | 2 Open Unix, Unixware | 2025-04-03 | 7.5 HIGH | N/A |
| Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21). | |||||
| CVE-2004-1039 | 1 Sco | 2 Openserver, Unixware | 2025-04-03 | 5.0 MEDIUM | N/A |
| The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a series of requests, which causes inetd to launch a separate process for each request. | |||||
| CVE-2004-0510 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
| Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program. | |||||
| CVE-1999-1138 | 1 Sco | 4 Open Desktop, Open Desktop Lite, Openserver and 1 more | 2025-04-03 | 10.0 HIGH | N/A |
| SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable. | |||||
| CVE-2005-0134 | 1 Sco | 1 Unixware | 2025-04-03 | 4.6 MEDIUM | N/A |
| The X server in SCO UnixWare 7.1.1, 7.1.3, and 7.1.4 does not properly create socket directories in /tmp, which could allow attackers to hijack local sockets. | |||||
| CVE-2001-0577 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
| recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first command line argument. | |||||
| CVE-2001-1579 | 1 Sco | 2 Open Unix, Unixware | 2025-04-03 | 5.0 MEDIUM | N/A |
| The timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0 does not properly terminate certain strings with a null, which allows remote attackers to cause a denial of service. | |||||
| CVE-1999-0693 | 3 Hp, Ibm, Sco | 3 Hp-ux, Aix, Unixware | 2025-04-03 | 7.2 HIGH | N/A |
| Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges. | |||||
| CVE-2000-0029 | 1 Sco | 1 Unixware | 2025-04-03 | 4.6 MEDIUM | N/A |
| UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack. | |||||
| CVE-2003-0834 | 1 Sco | 2 Open Unix, Unixware | 2025-04-03 | 7.2 HIGH | N/A |
| Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME. | |||||
| CVE-2003-0742 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
| SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program. | |||||
| CVE-2000-0130 | 1 Sco | 1 Unixware | 2025-04-03 | 7.2 HIGH | N/A |
| Buffer overflow in SCO scohelp program allows remote attackers to execute commands. | |||||
| CVE-1999-0866 | 1 Sco | 1 Unixware | 2025-04-03 | 7.2 HIGH | N/A |
| Buffer overflow in UnixWare xauto program allows local users to gain root privilege. | |||||
| CVE-2001-0587 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
| deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command. | |||||
| CVE-2000-0308 | 2 Netscape, Sco | 4 Enterprise Server, Fasttrack Server, Proxy Server and 1 more | 2025-04-03 | 10.0 HIGH | N/A |
| Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges. | |||||
| CVE-2003-0937 | 1 Sco | 2 Open Unix, Unixware | 2025-04-03 | 4.6 MEDIUM | N/A |
| SCO UnixWare 7.1.1, 7.1.3, and Open UNIX 8.0.0 allows local users to bypass protections for the "as" address space file for a process ID (PID) by obtaining a procfs file descriptor for the file and calling execve() on a setuid or setgid program, which leaves the descriptor open to the user. | |||||
| CVE-2004-1131 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
| Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments. | |||||
| CVE-1999-1253 | 1 Sco | 2 Internet Faststart, Openserver | 2025-04-03 | 7.2 HIGH | N/A |
| Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root privileges. | |||||
| CVE-2004-0390 | 1 Sco | 1 Openserver | 2025-04-03 | 7.5 HIGH | N/A |
| SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods. | |||||
| CVE-2004-0511 | 1 Sco | 1 Openserver | 2025-04-03 | 2.1 LOW | N/A |
| Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a null dereference. | |||||