Filtered by vendor Sco Subscriptions
Total 129 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2004-1131 1 Sco 1 Openserver 2025-04-03 N/A
Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments.
CVE-2005-0109 5 Freebsd, Redhat, Sco and 2 more 9 Freebsd, Enterprise Linux, Enterprise Linux Desktop and 6 more 2025-04-03 N/A
Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, allows local users to use a malicious thread to create covert channels, monitor the execution of other threads, and obtain sensitive information such as cryptographic keys, via a timing attack on memory cache misses.
CVE-2005-2926 1 Sco 1 Openserver 2025-04-03 N/A
Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable.
CVE-1999-0023 6 Bsdi, Freebsd, Ibm and 3 more 10 Bsd Os, Freebsd, Aix and 7 more 2025-04-03 N/A
Local user gains root privileges via buffer overflow in rdist, via lookup() function.
CVE-1999-0096 3 Bsdi, Freebsd, Sco 4 Bsd Os, Freebsd, Internet Faststart and 1 more 2025-04-03 N/A
Sendmail decode alias can be used to overwrite sensitive files.
CVE-1999-0153 2 Microsoft, Sco 4 Windows 2000, Windows 95, Windows Nt and 1 more 2025-04-03 N/A
Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.
CVE-1999-0693 3 Hp, Ibm, Sco 3 Hp-ux, Aix, Unixware 2025-04-03 N/A
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.
CVE-1999-0697 1 Sco 1 Openserver 2025-04-03 N/A
SCO Doctor allows local users to gain root privileges through a Tools option.
CVE-1999-0009 11 Bsdi, Caldera, Data General and 8 more 13 Bsd Os, Openlinux, Dg Ux and 10 more 2025-04-03 N/A
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
CVE-1999-0828 1 Sco 1 Unixware 2025-04-03 N/A
UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.
CVE-1999-0836 1 Sco 1 Unixware 2025-04-03 N/A
UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack.
CVE-1999-0851 3 Ibm, Sco, Sun 4 Aix, Openserver, Unixware and 1 more 2025-04-03 N/A
Denial of service in BIND named via naptr.
CVE-1999-0866 1 Sco 1 Unixware 2025-04-03 N/A
Buffer overflow in UnixWare xauto program allows local users to gain root privilege.
CVE-1999-0893 1 Sco 1 Openserver 2025-04-03 N/A
userOsa in SCO OpenServer allows local users to corrupt files via a symlink attack.
CVE-1999-0942 1 Sco 1 Unixware 2025-04-03 N/A
UnixWare dos7utils allows a local user to gain root privileges by using the STATICMERGE environmental variable to find a script which it executes.
CVE-2000-0130 1 Sco 1 Unixware 2025-04-03 N/A
Buffer overflow in SCO scohelp program allows remote attackers to execute commands.
CVE-2001-0579 1 Sco 1 Openserver 2025-04-03 N/A
lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first argument to the command.
CVE-2001-1148 1 Sco 1 Openserver 2025-04-03 N/A
Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh.
CVE-2002-1199 3 Caldera, Sco, Sun 4 Openlinux, Openserver, Solaris and 1 more 2025-04-03 N/A
The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.
CVE-2004-0996 4 Cscope, Debian, Gentoo and 1 more 4 Cscope, Debian Linux, Linux and 1 more 2025-04-03 N/A
main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack.