Openserver Security Vulnerabilities
A reflected Cross-site scripting (XSS) vulnerability in Xinuo (formerly SCO) Openserver version 5 and 6 allows remote attackers to inject arbitrary web script or HTML tag via the parameter...
6.1CVSS
5.4AI Score
0.003EPSS
Xinuos (formerly SCO) Openserver v5 and v6 allows attackers to execute arbitrary commands via shell metacharacters in outputform or toclevels parameter to...
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack...
8.1AI Score
0.031EPSS
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null...
6AI Score
0.005EPSS
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU...
6.1AI Score
0.006EPSS
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer...
6.2AI Score
0.013EPSS
Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment...
7.8AI Score
0.001EPSS
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header...
7.6AI Score
0.004EPSS
Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc...
7.6AI Score
0.0004EPSS
Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc...
7.7AI Score
0.001EPSS
Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone...
7AI Score
0.012EPSS
6.8AI Score
0.003EPSS
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP...
6.3AI Score
0.017EPSS
Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local users to gain root...
7.3AI Score
0.0004EPSS
6.7AI Score
0.007EPSS
6.8AI Score
0.003EPSS
8.1AI Score
0.0004EPSS
7.3AI Score
0.008EPSS
9.2AI Score
0.012EPSS
6.7AI Score
0.012EPSS
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include:...
6.6AI Score
0.0004EPSS
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local...
6.8AI Score
0.0004EPSS
8AI Score
0.0004EPSS
Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root...
7.2AI Score
0.0004EPSS
7.3AI Score
0.007EPSS
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC...
7.3AI Score
0.0004EPSS
SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are...
7.6AI Score
0.038EPSS