CVE-2001-1148

2001-06-13T04:00:00
ID CVE-2001-1148
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:29:00

Description

Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh.