Security Update: [CSSA-2003-SCO.3] UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : ftp vulnerability with pipe symbols in filenames

To: [email protected] [email protected] [email protected] [email protected] SCO Security Advisory Subject: UnixWare 7.1.1 Open UNIX 8.0.0 UnixWare 7.1.3 : ftp vulnerability with pipe symbols in filenames Advisory number: CSSA-2003-SCO.3 Issue date: 2003 March...

CVE-2002-1998

Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtablecreate procedure 21...

Security Update: [CSSA-2002-SCO.43] UnixWare 7.1.1 Open UNIX 8.0.0 : closed file descriptor race vulnerability

To: [email protected] [email protected] [email protected] [email protected] SCO Security Advisory Subject: UnixWare 7.1.1 Open UNIX 8.0.0 : closed file descriptor race vulnerability Advisory number: CSSA-2002-SCO.43 Issue date: 2002 December 09 Cross referenc...

Security Update: [CSSA-2002-SCO.42] UnixWare 7.1.1 Open UNIX 8.0.0 : in.talkd format string vulnerabilities

To: [email protected] [email protected] [email protected] [email protected] SCO Security Advisory Subject: UnixWare 7.1.1 Open UNIX 8.0.0 : in.talkd format string vulnerabilities Advisory number: CSSA-2002-SCO.42 Issue date: 2002 November 12 Cross reference: ...

CVE-2002-1231

SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to cause a denial of service via an rcp call on /proc...

Security Update: [CSSA-2002-SCO.41] UnixWare 7.1.1 Open UNIX 8.0.0 : rcp of /proc causes denial-of-service

To: [email protected] [email protected] [email protected] [email protected] SCO Security Advisory Subject: UnixWare 7.1.1 Open UNIX 8.0.0 : rcp of /proc causes denial-of-service Advisory number: CSSA-2002-SCO.41 Issue date: 2002 October 21 Cross reference: 1...

Unixware/Open Unix rcp DoS

rcp of /prog causes system to hang...

CVE-2002-0884

Multiple format string vulnerabilities in in.rarpd ARP server on Solaris, Caldera UnixWare and Open UNIX, and possibly other operating systems, allows remote attackers to execute arbitrary code via format strings that are not properly handled in the functions 1 syserr and 2 error...

CVE-2002-0885

Multiple buffer overflows in in.rarpd ARP server on Solaris, and possibly other operating systems including Caldera UnixWare and Open UNIX, allow remote attackers to execute arbitrary code, possibly via the functions 1 syserr and 2 error...

CVE-2002-0981

Buffer overflow in ndcfg command for UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to execute arbitrary code via a long command line...

CVE-2002-0987

X server Xsco in OpenUNIX 8.0.0 and UnixWare 7.1.1 does not drop privileges before calling programs such as xkbcomp using popen, which could allow local users to gain privileges...

CVE-2002-0988

Buffer overflow in X server Xsco in OpenUNIX 8.0.0 and UnixWare 7.1.1, possibly related to XBM/xkbcomp capabilities...

CVE-2002-0885

Multiple buffer overflows in in.rarpd ARP server on Solaris, and possibly other operating systems including Caldera UnixWare and Open UNIX, allow remote attackers to execute arbitrary code, possibly via the functions 1 syserr and 2 error...

CVE-2002-0884

CVE-2002-0884 describes multiple format string vulnerabilities in the ARP server component in.rarpd affecting Solaris, Caldera UnixWare and Open UNIX (and possibly other OSes). The flaw allows remote code execution via improper handling of format strings in the functions (1) syserr and (2) error....

CVE-2002-0885

The CVE-2002-0885 entry describes multiple buffer overflows in in.rarpd (the ARP server) on Solaris and potentially other OSes (Caldera UnixWare, Open UNIX). The underlying issue is a vulnerability in functions (1) syserr and (2) error that could allow remote attackers to execute arbitrary code. ...

Unixware ndcfg buffer overflow

Command line buffer overflow...

Security Update: [CSSA-2002-SCO.36] UnixWare 7.1.1 Open UNIX 8.0.0 : command line buffer overflow in ndcfg

To: [email protected] [email protected] [email protected] [email protected] Caldera International, Inc. Security Advisory Subject: UnixWare 7.1.1 Open UNIX 8.0.0 : command line buffer overflow in ndcfg Advisory number: CSSA-2002-SCO.36 Issue date: 2002 August...

CVE-2002-0517

Buffer overflow in X11 library libX11 on Caldera Open UNIX 8.0.0, UnixWare 7.1.1, and possibly other operating systems, allows local users to gain root privileges via a long -xrm argument to programs such as 1 dtterm or 2 xterm...

CVE-2002-0827

Vulnerability in pppd on UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to gain root privileges via 1 ppptalk or 2 ppp, a different vulnerability than CVE-2002-0824...

CVE-2002-0827

Vulnerability in pppd on UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to gain root privileges via 1 ppptalk or 2 ppp, a different vulnerability than CVE-2002-0824...