Total
72 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2003-0791 | 2 Mozilla, Sco | 2 Mozilla, Openserver | 2025-04-03 | 7.5 HIGH | 9.8 CRITICAL |
|
The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as input to the script.thaw JavaScript function, which is then deserialized and executed.
|
|||||
| CVE-2004-0112 | 24 4d, Apple, Avaya and 21 more | 65 Webstar, Mac Os X, Mac Os X Server and 62 more | 2025-04-03 | 5.0 MEDIUM | N/A |
|
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.
|
|||||
| CVE-1999-0129 | 7 Bsdi, Eric Allman, Freebsd and 4 more | 9 Bsd Os, Sendmail, Freebsd and 6 more | 2025-04-03 | 4.6 MEDIUM | N/A |
|
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
|
|||||
| CVE-1999-0033 | 5 Ibm, Ncr, Sco and 2 more | 7 Aix, Mp-ras, Open Desktop and 4 more | 2025-04-03 | 7.2 HIGH | N/A |
|
Command execution in Sun systems via buffer overflow in the at program.
|
|||||
| CVE-2004-0512 | 1 Sco | 1 Openserver | 2025-04-03 | 2.1 LOW | N/A |
|
Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a core dump.
|
|||||
| CVE-2004-0510 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
|
Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.
|
|||||
| CVE-2001-0627 | 1 Sco | 1 Openserver | 2025-04-03 | 3.7 LOW | N/A |
|
vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files via a symlink attack.
|
|||||
| CVE-1999-0368 | 7 Caldera, Debian, Proftpd Project and 4 more | 8 Openlinux, Debian Linux, Proftpd and 5 more | 2025-04-03 | 10.0 HIGH | N/A |
|
Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.
|
|||||
| CVE-2003-1021 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
|
The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline.
|
|||||
| CVE-1999-1450 | 1 Sco | 2 Openserver, Unixware | 2025-04-03 | 7.5 HIGH | N/A |
|
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges.
|
|||||
| CVE-2004-1131 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
|
Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments.
|
|||||
| CVE-1999-0476 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
|
A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user.
|
|||||
| CVE-2001-0588 | 1 Sco | 1 Openserver | 2025-04-03 | 4.6 MEDIUM | N/A |
|
sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.
|
|||||
| CVE-1999-0411 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
|
Several startup scripts in SCO OpenServer Enterprise System v 5.0.4p, including S84rpcinit, S95nis, S85tcp, and S89nfs, are vulnerable to a symlink attack, allowing a local user to gain root access.
|
|||||
| CVE-1999-1185 | 1 Sco | 5 Cmw, Internet Faststart, Open Desktop and 2 more | 2025-04-03 | 7.2 HIGH | N/A |
|
Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file.
|
|||||
| CVE-2001-0896 | 1 Sco | 1 Openserver | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Inetd in OpenServer 5.0.5 allows remote attackers to cause a denial of service (crash) via a port scan, e.g. with nmap -PO.
|
|||||
| CVE-1999-0017 | 9 Caldera, Freebsd, Gnu and 6 more | 11 Openlinux, Freebsd, Inet and 8 more | 2025-04-03 | 7.5 HIGH | N/A |
|
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
|
|||||
| CVE-2005-3626 | 18 Conectiva, Debian, Easy Software Products and 15 more | 33 Linux, Debian Linux, Cups and 30 more | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that triggers a null dereference.
|
|||||
| CVE-1999-0893 | 1 Sco | 1 Openserver | 2025-04-03 | 2.1 LOW | N/A |
|
userOsa in SCO OpenServer allows local users to corrupt files via a symlink attack.
|
|||||
| CVE-2000-0307 | 1 Sco | 3 Open Desktop, Openserver, Unixware | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.
|
|||||
| CVE-2006-0072 | 1 Sco | 1 Openserver | 2025-04-03 | 7.5 HIGH | N/A |
|
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.
|
|||||
| CVE-1999-0010 | 8 Data General, Ibm, Isc and 5 more | 11 Dg Ux, Aix, Bind and 8 more | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
|
|||||
| CVE-1999-1138 | 1 Sco | 4 Open Desktop, Open Desktop Lite, Openserver and 1 more | 2025-04-03 | 10.0 HIGH | N/A |
|
SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable.
|
|||||
| CVE-2001-0797 | 5 Hp, Ibm, Sco and 2 more | 6 Hp-ux, Aix, Openserver and 3 more | 2025-04-03 | 10.0 HIGH | N/A |
|
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
|
|||||
| CVE-2004-0079 | 23 4d, Apple, Avaya and 20 more | 66 Webstar, Mac Os X, Mac Os X Server and 63 more | 2025-04-03 | 5.0 MEDIUM | 7.5 HIGH |
|
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
|
|||||
| CVE-1999-0128 | 5 Digital, Ibm, Linux and 2 more | 9 Osf 1, Aix, Sng and 6 more | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.
|
|||||
| CVE-2001-0578 | 1 Sco | 1 Openserver | 2025-04-03 | 4.6 MEDIUM | N/A |
|
Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command.
|
|||||
| CVE-2001-0577 | 1 Sco | 1 Openserver | 2025-04-03 | 7.2 HIGH | N/A |
|
recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first command line argument.
|
|||||
| CVE-2000-0306 | 1 Sco | 1 Openserver | 2025-04-03 | 10.0 HIGH | N/A |
|
Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.
|
|||||
| CVE-2000-0158 | 1 Sco | 1 Openserver | 2025-04-03 | 7.5 HIGH | N/A |
|
Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon.
|
|||||
| CVE-2005-0351 | 1 Sco | 1 Openserver | 2025-04-03 | 4.6 MEDIUM | N/A |
|
Buffer overflow in (1) termsh, (2) atcronsh, and (3) auditsh in SCO OpenServer 5.0.6 and 5.0.7 might allow local users to execute arbitrary code via a long HOME environment variable.
|
|||||
| CVE-2000-0147 | 1 Sco | 1 Openserver | 2025-04-03 | 2.1 LOW | N/A |
|
snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration.
|
|||||