Lucene search

[email protected]CVE-1999-1041

HistoryAug 27, 1998 - 4:00 a.m.

CVE-1999-1041

1998-08-2704:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

buffer overflow

mscreen

sco openserver 5.0

sco unix 3.2v4

root access

cve-1999-1041

7.7 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.6%

JSON

Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.

CPENameOperatorVersion
sco:openserversco openservereq5.0
sco:unixsco unixeq3.2v4

CPE	Name	Operator	Version
sco:openserver	sco openserver	eq	5.0
sco:unix	sco unix	eq	3.2v4

References

ftp://ftp.sco.com/SSE/security_bulletins/SB-98.05a

marc.info/?l=bugtraq&m=90686250717719&w=2

www.cert.org/vendor_bulletins/VB-98.10.sco.mscreen

www.securityfocus.com/archive/1/10420

7.7 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

24.6%

JSON