5 matches found
CVE-2003-0834
The CVE-2003-0834 issue is a local buffer overflow in the CDE libDtHelp library that allows a local user to execute arbitrary code. The vulnerability is triggered via manipulation of environment-related paths (DTHELPUSERSEARCHPATH, DTHELPSEARCHPATH) or LOGNAME through the Help feature, leading to...
CVE-2002-1323
CVE-2002-1323 concerns Safe.pm (versions <= 2.0.7) used with Perl
CVE-2003-0937
CVE-2003-0937 affects SCO UnixWare 7.1.1, 7.1.3 and Open UNIX 8.0.0. Local users can bypass protections on the process AS (as) by obtaining a procfs descriptor for a PID and then execve() a setuid/setgid binary, leaving the descriptor open to the user (local privilege escalation). According to ad...
CVE-2001-1579
The CVE-2001-1579 entry concerns the timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0. The root cause is improper termination of certain strings with a null character, which permits remote attackers to trigger a denial of service. The Red Hat CVE page corroborates the same description. P...
CVE-2002-1998
CVE-2002-1998 describes a buffer overflow in rpc.cmsd on SCO UnixWare 7.1.1 and Open UNIX 8.0.0 that allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21). Multiple sources (NVD, Red Hat advisory, CVE records) corroborate this description and t...