273 matches found
Xinuos Openserver Parameter Injection Vulnerability
Xinuos Openserver is a FreeBSD-based operating system from the US company Xinuos. A security vulnerability exists in Xinuos formerly SCO Openserver versions v5 and v6 that allows an attacker to execute arbitrary commands to the cgi-bin printbook via the shell metacharacter outputform or toclevels...
SCO OpenServer 5.0.x StartX Weak XHost Permissions Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2731/info OpenServer is a Unix based operating system distributed by Santa Cruz Operations. A problem in access control of the X server could allow a local user to gain elevated privileges. When the X Window System is...
OpenServer 5.0.5/5.0.6,HP-UX 10/11,Solaris 2.6/7.0/8 rpc.yppasswdd Buffer Overrun
No description provided by source. source: http://www.securityfocus.com/bid/2763/info The rpc.yppasswdd server is used to handle password change requests from yppasswd and modify the NIS password file. A buffer overrun vulnerability has been discovered in the rpc.yppasswdd utility distributed by...
Caldera OpenServer 5.0.5/5.0.6 SCOAdmin Symbolic Link Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4875/info A vulnerability has been reported in the scoadmin utility that may allow a local attacker to overwrite any file. The vulnerability is due to the predictable naming of temporary files used by scoadmin. When writi...
Caldera OpenServer 5.0.x XSCO Color Database File Heap Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4985/info OpenServer is commercial Unix operating system originally developed by SCO, and distributed by Caldera. It may be possible for a local user to gain elevated privileges. When Xsco is executed, and an excessively...
SCO OpenServer 5.0.6 lpadmin Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2553/info SCO OpenServer 5.0.6 and possibly earlier versions ships with several suid 'bin' executables used in printer administration and related tasks. This includes lpadmin, a component used to manage and configure prin...
SCO Open Server 5.0.6 lpshut Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2555/info SCO OpenServer 5.0.6 and possibly earlier versions ships with several suid bin executables used in printer administration and related tasks. This includes lpshut, a component used to shut down the LP print...
SCO Open Server 5.0.6 lpforms Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2554/info SCO OpenServer 5.0.6 and possibly earlier versions ships with several suid bin executables used in printer administration and related tasks. This includes lpforms, a component used to manage and configure print...
SCO Open Server 5.0.6 recon Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2560/info SCO OpenServer 5.0.6 and possibly earlier versions ships with a suid 'bin' executable called 'recon'. 'recon' is used to buffer and forward escape sequences from a user's input to timing-sensitive applications...
SCO OpenServer 5.0.x 'mana' REMOTE_ADDR Authentication Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8616/info It has been reported that SCO OpenServer Internet Manager 'mana' process is prone to an authentication bypass issue. The issue is reported to occur as a local user is able to export the REMOTEADDR environment...
SCO OpenServer 5.0.x 'mana' PATH_INFO Privilege Escalation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8618/info It has been reported that SCO OpenServer Inertnet Manager 'mana' process is prone to a privilege escalation issue allow local users to execute arbitrary code with elevated privileges. mana normally requires...
SCO OpenServer 5.0.6/5.0.7 NWPrint Command Line Argument Local Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12986/info nwprint that is distributed with SCO OpenServer is prone to a local buffer overflow vulnerability. This issue arises because the application fails to perform boundary checks prior to copying user-supplied data...
SCO OpenServer IMAP server buffer overflow
Buffer overflow in IMAP service is not fixed in 180 days...
ZDI-11-058: SCO Openserver IMAP Daemon Long Verb Parsing Remote Code Execution Vulnerability
ZDI-11-058: SCO Openserver IMAP Daemon Long Verb Parsing Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-058 February 7, 2011 - This vulnerability is being disclosed publicly without a patch in accordance with the ZDI 180 day deadline. To view mitigations fo...
(0Day) SCO Openserver IMAP Daemon Long Verb Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the SCO OpenServer IMAP daemon. Authentication is not required to exploit this vulnerability. The specific flaw exists within the imapd process responsible for handling remote IMAP requests. The...
OS Identification : Telnet
Nessus was able to identify the remote operating system based on the telnet banner. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid29831; scriptversion"1.103"; scriptsetattributeattribute:"pluginmodificationdate",...
SCO OpenServer 5.0.5 Env Local Stack Overflow Exploit
No description provided by source. / Copyright c 2000 ADM / / All Rights Reserved / / THIS IS UNPUBLISHED PROPRIETARY SOURCE CODE OF ADM / / The copyright notice above does not evidence any / / actual or intended publication of such source code. / / / / Title: SCO OpenServer mscreen / / Tested...
SCO Openserver 5.0.7 (MMDF deliver) Local Root Exploit
No description provided by source. / MMDF deliver local root exploit for SCO OpenServer 5.0.7 x86 Copyright 2004 Ramon de Carvalho Valle / char shellcode= / 36 bytes / "\x68\xff\xf8\xff\x3c" / pushl $0x3cfff8ff / "\x6a\x65" / pushl $0x65 / "\x89\xe6" / movl %esp,%esi / "\xf7\x56\x04" / notl...
SCO Openserver 5.0.7 (termsh) Local Privilege Escalation Exploit
No description provided by source. / SCO Openserver 5.0.7 termsh exploit =================================== 'termsh' is a program to view or modify an existing terminal entry on SCO Openserver. A stack based overflow exists in the handling of command line arguements, namely the -o oadir arguemen...
Buffer overflow
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector...