CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

securityvulns•added 2001/06/23 12:0 a.m.•33 views

Caldera Systems security advisory: libcurses, atcronsh, rtpm

Caldera Systems, Inc. Security Advisory Subject: curses library, rtpm, atcronsh Advisory number: CSSA-2001-SCO.1 Issue date: 2001 June, 22 Cross reference: 1. Problem Description A buffer overrun vulnerability has been found in the curses library. A malicious user could attack a setuid,gid comman...

0.8AI score

securityvulns•added 2001/06/13 12:0 a.m.•17 views

Unixware 7.1.1 rtpm

$ uname -a UnixWare paris 5 7.1.1 i386 x86at SCO UNIXSVR5 this is a two node NSC $ id uid=101fixxxer gid=1other $ ls -al /usr/sbin/rtpm -r-xr-sr-x 1 bin sys 288324 Mar 22 22:35 /usr/sbin/rtpm $ export TERM=perl -e 'printf "B"x4800' $ rtpm Memory fault $ bash Memory faultcoredump $ vi Memory...

1.1AI score

securityvulns•added 2001/06/13 12:0 a.m.•45 views

Дырки в утилитах Unixware (buffer overflow)

Переполнение буфера во многих утилитах Unixware 7.1, включая Sgid bin rtpm, при длинной shell-переменной TERM...

2.1AI score

securityvulns•added 2001/05/24 12:0 a.m.•33 views

[SRT2001-09] - vi and crontab -e /tmp issues

====================================================================== Strategic Reconnaissance Team Security AdvisorySRT2001-9 Topic: vi and crontab -e /tmp issues Vendor: Santa Cruz Operations Release Date: 05/07/01 ====================================================================== .:...

0.4AI score

securityvulns•added 2001/05/24 12:0 a.m.•87 views

[SRT2001-10] - scoadmin /tmp issues

====================================================================== Strategic Reconnaissance Team Security AdvisorySRT2001-10 Topic: scoadmin /tmp issues Vendor: Santa Cruz Operations Release Date: 05/07/01 ====================================================================== .: Description...

0.1AI score

Cvelist•added 2001/05/07 4:0 a.m.•15 views

CVE-2000-0349

Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service...

6.4AI score0.00481EPSS

CVE•added 2001/05/07 4:0 a.m.•50 views

CVE-2000-0348

The vulnerability CVE-2000-0348 affects the Sendmail configuration file sendmail.cf in SCO UnixWare 7.1.0 and earlier. The issue allows an attacker to gain root privileges by exploiting the misconfiguration in sendmail.cf. The connected documents do not provide additional exploit details, affecte...

10CVSS7.1AI score0.00461EPSS

CVE•added 2001/05/07 4:0 a.m.•49 views

CVE-2000-0351

The vulnerability CVE-2000-0351 affects SCO UnixWare 7.1.0 packaging commands that grant insecure privileges, enabling local users to add or remove software packages. Connected sources (NVD, CVE List, CVE record, EUVD) corroborate that this is a local-privilege issue impacting the packaging subsy...

4.6CVSS6.9AI score0.00082EPSS

Cvelist•added 2001/05/07 4:0 a.m.•18 views

CVE-2000-0308

Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges...

6.8AI score0.00349EPSS

CVE•added 2001/05/07 4:0 a.m.•56 views

CVE-2000-0307

The vulnerability CVE-2000-0307 affects the xserver component in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier. It enables a denial of service that prevents access to reserved port numbers below 1024. Public records do not provide exploit details, additional affected versions beyond the stat...

5CVSS6.8AI score0.00481EPSS

Exploits0References1Affected Software3

Cvelist•added 2001/05/07 4:0 a.m.•22 views

CVE-2000-0307

Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024...

6.5AI score0.00481EPSS

CVE•added 2001/05/07 4:0 a.m.•48 views

CVE-2000-0349

The CVE-2000-0349 entry concerns SCO UnixWare 7.1.0, where the passthru driver is vulnerable to a denial of service. The connected sources confirm the affected product and the impact (DoS), but do not provide root-cause specifics, exploitation details, or a remediation/patch. No additional mitiga...

5CVSS6.7AI score0.00481EPSS

CVE•added 2001/05/07 4:0 a.m.•53 views

CVE-2000-0308

CVE-2000-0308 affects Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 on SCO UnixWare 7.0.x/2.1.3. Insecure file permissions could allow an attacker to gain root privileges. The initial description does not provide exploit specifics or a patched version; no exploitation...

10CVSS7.2AI score0.00349EPSS

Exploits0References1Affected Software3

Cvelist•added 2001/05/07 4:0 a.m.•22 views

CVE-2000-0348

A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges...

6.7AI score0.00461EPSS

Cvelist•added 2001/05/07 4:0 a.m.•19 views

CVE-2000-0351

Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages...

6.5AI score0.00082EPSS

NVD•added 2001/03/12 5:0 a.m.•11 views

CVE-2000-0307

Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024...

5CVSS6.5AI score0.00481EPSS

NVD•added 2001/03/12 5:0 a.m.•13 views

CVE-2000-0308

Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges...

10CVSS6.8AI score0.00349EPSS

NVD•added 2001/03/12 5:0 a.m.•20 views

CVE-2000-0348

A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges...

10CVSS6.7AI score0.00461EPSS

NVD•added 2001/03/12 5:0 a.m.•12 views

CVE-2000-0351

Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages...

4.6CVSS6.5AI score0.00082EPSS