CVE-2000-0130

Buffer overflow in SCO scohelp program allows remote attackers to execute commands.

CVE-1999-0988

UnixWare pkgtrans allows local users to read arbitrary files via a symlink attack.

CVE-1999-0836

UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack.

CVE-2000-0026

Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.

CVE-1999-0825

The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.

CVE-2000-0029

UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.

CVE-1999-0828

UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.

CVE-1999-0864

UnixWare programs that dump core allow a local user to modify files via a symlink attack on the ./core.pid file.

CVE-1999-0942

UnixWare dos7utils allows a local user to gain root privileges by using the STATICMERGE environmental variable to find a script which it executes.

CVE-1999-0979

The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed.

CVE-2000-0215

Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges.

CVE-1999-0866

Buffer overflow in UnixWare xauto program allows local users to gain root privilege.

CVE-2000-0154

The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack.

CVE-2000-0173

Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service.

CVE-2000-0224

ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack.