Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
ScoOpenserver5.0.6

24 matches found

CVE
CVEadded 2005/04/21 4:0 a.m.176 views

CVE-2004-1082

mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials.

7.5CVSS8.1AI score0.05469EPSS
CVE
CVEadded 2002/06/25 4:0 a.m.153 views

CVE-2001-0797

Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

10CVSS7.4AI score0.88625EPSS
CVE
CVEadded 2004/11/23 5:0 a.m.108 views

CVE-2004-0079

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

7.5CVSS7.1AI score0.02058EPSS
CVE
CVEadded 2004/11/23 5:0 a.m.87 views

CVE-2004-0081

OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.

5CVSS7.2AI score0.02271EPSS
CVE
CVEadded 2004/11/23 5:0 a.m.87 views

CVE-2004-0112

The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-b...

5CVSS7.2AI score0.00942EPSS
CVE
CVEadded 2005/04/14 4:0 a.m.49 views

CVE-2004-0390

SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods.

7.5CVSS7.3AI score0.03359EPSS
CVE
CVEadded 2004/12/23 5:0 a.m.48 views

CVE-2004-0510

Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.

7.2CVSS7.5AI score0.00535EPSS
CVE
CVEadded 2005/01/19 5:0 a.m.48 views

CVE-2004-1039

The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a series of requests, which causes inetd to launch a separate process for each request.

5CVSS6.8AI score0.00763EPSS
CVE
CVEadded 2006/01/04 12:3 a.m.47 views

CVE-2006-0072

Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.

7.5CVSS7.9AI score0.05386EPSS
CVE
CVEadded 2005/02/08 5:0 a.m.46 views

CVE-2004-1131

Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments.

7.2CVSS8AI score0.00078EPSS
CVE
CVEadded 2005/08/05 4:0 a.m.45 views

CVE-2001-1578

Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors.

2.1CVSS6.4AI score0.00084EPSS
CVE
CVEadded 2004/12/23 5:0 a.m.45 views

CVE-2004-0511

Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a null dereference.

2.1CVSS6.9AI score0.01859EPSS
CVE
CVEadded 2004/09/01 4:0 a.m.44 views

CVE-2002-1199

The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.

5CVSS6.5AI score0.02144EPSS
CVE
CVEadded 2004/12/23 5:0 a.m.43 views

CVE-2004-0512

Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a core dump.

2.1CVSS6.8AI score0.0007EPSS
CVE
CVEadded 2003/08/27 4:0 a.m.42 views

CVE-2003-0597

Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges.

7.2CVSS6.9AI score0.00081EPSS
CVE
CVEadded 2005/04/09 4:0 a.m.42 views

CVE-2005-0351

Buffer overflow in (1) termsh, (2) atcronsh, and (3) auditsh in SCO OpenServer 5.0.6 and 5.0.7 might allow local users to execute arbitrary code via a long HOME environment variable.

4.6CVSS7.5AI score0.00124EPSS
CVE
CVEadded 2005/05/02 4:0 a.m.42 views

CVE-2005-0993

Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users to execute arbitrary code via a long command line argument.

4.6CVSS7.5AI score0.00227EPSS
CVE
CVEadded 2003/10/06 4:0 a.m.41 views

CVE-2003-0742

SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program.

7.2CVSS7AI score0.00181EPSS
CVE
CVEadded 2002/03/09 5:0 a.m.40 views

CVE-2001-0627

vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files via a symlink attack.

3.7CVSS6.4AI score0.00117EPSS
CVE
CVEadded 2001/08/22 4:0 a.m.38 views

CVE-2001-0588

sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.

4.6CVSS7.5AI score0.00104EPSS
CVE
CVEadded 2005/01/29 5:0 a.m.37 views

CVE-2004-1124

Unknown vulnerability in chroot on SCO UnixWare 7.1.1 through 7.1.4 allows local users to escape the chroot jail and conduct unauthorized activities.

4.6CVSS6.3AI score0.00103EPSS
CVE
CVEadded 2003/04/02 5:0 a.m.36 views

CVE-2002-0716

Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument.

7.2CVSS7AI score0.00082EPSS
CVE
CVEadded 2001/08/22 4:0 a.m.35 views

CVE-2001-0575

Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut.

4.6CVSS7.2AI score0.00262EPSS
CVE
CVEadded 2001/08/22 4:0 a.m.35 views

CVE-2001-0587

deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.

7.2CVSS7.5AI score0.00067EPSS