15 matches found
EUVD-2004-0510
Malware in sbrugna...
SCO Openserver 5.0.7 Command Injection
Exploit Title: SCO Openserver 5.0.7 - 'outputform' Command Injection Google Dork: inurl:/cgi-bin/manlist?section Discovered Date: 04/09/2020 Author: Ramikan Vendor Homepage: https://www.xinuos.com/products/ Software Link: https://www.sco.com/products/openserver507/-overview Affected Version: Test...
SCO Openserver 5.0.7 (termsh) Local Privilege Escalation Exploit
No description provided by source. / SCO Openserver 5.0.7 termsh exploit =================================== 'termsh' is a program to view or modify an existing terminal entry on SCO Openserver. A stack based overflow exists in the handling of command line arguements, namely the -o oadir arguemen...
CVE-2006-0072
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector...
Buffer overflow
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector...
CVE-2006-0072
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector...
SCO Openserver 5.0.7 (termsh) Local Privilege Escalation Exploit
Exploit for sco platform in category local exploits ================================================================ SCO Openserver 5.0.7 termsh Local Privilege Escalation Exploit ================================================================ / SCO Openserver 5.0.7 termsh exploit...
SCO OpenServer 5.0.7 - 'termsh' Local Privilege Escalation
/ SCO Openserver 5.0.7 termsh exploit =================================== 'termsh' is a program to view or modify an existing terminal entry on SCO Openserver. A stack based overflow exists in the handling of command line arguements, namely the -o oadir arguement. It is installed setgid auth in a...
SCO OpenServer 5.0.7 - termsh Local Privilege Escalation
SCO OpenServer 5.0.7 - termsh Local Privilege Escalation / SCO Openserver 5.0.7 termsh exploit =================================== 'termsh' is a program to view or modify an existing terminal entry on SCO Openserver. A stack based overflow exists in the handling of command line arguements, namely...
CVE-2005-2926
Stack-based buffer overflow in 1 backupsh and 2 authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable...
possible privilege escalation on Sco OpenServer 5.0.7
i started to play with a vanilla installation of SCO OpenServer 5.0.7 to check the portability of some code a few days ago, and noticed that some binary files were segfaulting if given an arbitrary long input; btw i don't think it's really a problem because most of them were not setuid/setgid, an...
[Full-Disclosure] OpenServer 5.0.6 OpenServer 5.0.7 : scosessoin local privilege elevation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SCO Security Advisory Subject: OpenServer 5.0.6 OpenServer 5.0.7 : scosessoin local privilege elevation Advisory number: SCOSA-2005.5 Issue date: 2005 January 25 Cross reference: sr886719 fz528461 erg712476 CAN-2003-1021 1. Problem Description A probl...
CVE-2004-0511
Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a null dereference...
CVE-2004-0512
Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a core dump...
CVE-2004-0510
Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program...