6 matches found
SCO Unixware 7.0/7.0.1/7.1/7.1.1 'uidadmin' Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/842/info Certain versions of SCO Unixware ship with an exploitable version of the /usr/bin/uidadmin program. The problem lies in that 'uidadmin' runs with root privileges and performs insecure writes to a scratch director...
Unixware 7.0 - SCOhelp HTTP Server Format String
Unixware 7.0 - SCOhelp HTTP Server Format String source: https://www.securityfocus.com/bid/1717/info SCO Unixware 7 default installation includes scohelp, an http server that listens on port 457/tcp and allows access to manual pages and other documentation files. The search CGI script provided fo...
Unixware 7.0 - SCOhelp HTTP Server Format String
source: https://www.securityfocus.com/bid/1717/info SCO Unixware 7 default installation includes scohelp, an http server that listens on port 457/tcp and allows access to manual pages and other documentation files. The search CGI script provided for that purpose has a vulnerability that could all...
CVE-2000-0224
ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack...
CVE-2000-0224
The CVE-2000-0224 entry refers to ARCserve agent on SCO UnixWare 7.x. The vulnerability is a local privilege escalation via a symlink attack that could allow a local attacker to obtain root privileges. The description clearly states the affected product/component and the root cause (symlink-relat...
SCO Unixware 7.17.1.1 - ARCserver tmp Symlink
SCO Unixware 7.17.1.1 - ARCserver tmp Symlink source: https://www.securityfocus.com/bid/988/info A symlink following vulnerability exists in the ARCserve agent, as shipped with SCO Unixware 7. Upon startup, the asagent program will create several files in /tmp. These are created mode 777, and can...