CVE-2001-0579

SCO OpenServer 5.0.6 is affected by CVE-2001-0579 due to a buffer overflow in the first argument to lpadmin, enabling a local attacker to gain additional privileges. The connected sources confirm the flaw is in lpadmin and describe privilege escalation, but do not provide exploit code, affected v...

CVE-2001-0577

CVE-2001-0577 concerns a local-privilege escalation in SCO OpenServer 5.0–5.0.6, where a buffer overflow in the first command-line argument can allow a local attacker to gain additional privileges. The affected software is SCO OpenServer 5.0 through 5.0.6; the underlying cause is a buffer overflo...

CVE-2001-0575

Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut...

CVE-2001-0576

lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additional privileges via a buffer overflow attack in the '-u' command line parameter...

CVE-2001-0577

recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first command line argument...

CVE-2001-0578

Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command...

CVE-2001-0579

lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first argument to the command...

CVE-2001-0587

deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command...

CVE-2001-0588

sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command...

Caldera Systems security advisory: libcurses, atcronsh, rtpm

Caldera Systems, Inc. Security Advisory Subject: curses library, rtpm, atcronsh Advisory number: CSSA-2001-SCO.1 Issue date: 2001 June, 22 Cross reference: 1. Problem Description A buffer overrun vulnerability has been found in the curses library. A malicious user could attack a setuid,gid comman...

CVE-2001-1148

Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to 1 atcronsh, 2 auditsh, 3 authsh, 4 backupsh, 5 lpsh, 6 sysadm.menu, or 7 termsh...

CVE-2000-0306

CVE-2000-0306 describes a buffer overflow in SCO OpenServer’s calserver that allows remote attackers to gain root privileges by sending a long message. The vulnerability is caused by insufficient bounds checking in calserver; exploitation would require crafting a long message sent to the service....

CVE-2000-0307

The vulnerability CVE-2000-0307 affects the xserver component in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier. It enables a denial of service that prevents access to reserved port numbers below 1024. Public records do not provide exploit details, additional affected versions beyond the stat...

CVE-2000-0306

Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message...

CVE-2000-0307

Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024...

SCO OpenServer 5.0.x - StartX Weak XHost Permissions

source: https://www.securityfocus.com/bid/2731/info OpenServer is a Unix based operating system distributed by Santa Cruz Operations. A problem in access control of the X server could allow a local user to gain elevated privileges. When the X Window System is started via the xhost script,...

SCO OpenServer 5.0.x - StartX Weak XHost Permissions

SCO OpenServer 5.0.x - StartX Weak XHost Permissions source: https://www.securityfocus.com/bid/2731/info OpenServer is a Unix based operating system distributed by Santa Cruz Operations. A problem in access control of the X server could allow a local user to gain elevated privileges. When the X...

SCO 5.0.6 issues (lpusers)

====================================================================== Strategic Reconnaissance Team Security AdvisorySRT2001-05 Topic: SCO 5.0.6 issues lpusers Vendor: SCO Release Date: 03/27/01 ====================================================================== .: Description SCO OpenServer...

SCO 5.0.6 issues (lpforms)

====================================================================== Strategic Reconnisiance Team Security AdvisorySRT2001-06 Topic: SCO 5.0.6 issues lpforms Vendor: SCO Release Date: 03/27/01 ====================================================================== .: Description SCO OpenServer...

SCO 5.0.6 MMDF issues (deliver)

====================================================================== Strategic Reconnisiance Team Security AdvisorySRT2001-03 Topic: SCO 5.0.6 MMDF issues deliver Vendor: SCO Release Date: 03/27/01 ====================================================================== .: Description SCO...