CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

SCO : Security Vulnerabilities (Overflow)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2006-4655 Overflow +Priv 2006-09-08 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare 7.1.3 and Sun Solaris 8 through 10, allows local users to gain privileges via a long _XKB_CHARSET environment variable value.
2 CVE-2006-0072 Exec Code Overflow 2006-01-03 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.
3 CVE-2005-3903 Exec Code Overflow 2005-12-14 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in uidadmin in SCO Unixware 7.1.3 and 7.1.4 allows local users to execute arbitrary code via a -S (scheme) argument that specifies a large file, a different vulnerability than CVE-2001-1063.
4 CVE-2005-3624 189 Overflow 2005-12-31 2010-11-19
5.0
None Remote Low Not required None Partial None
The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others allows attackers to corrupt the heap via negative or large integers in a CCITTFaxDecode stream, which lead to integer overflows and integer underflows.
5 CVE-2005-2927 Exec Code Overflow 2005-10-25 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Stack-based buffer overflow in ppp in SCO Unixware 7.1.3 and 7.1.4, and possibly earlier versions, allows local users to execute arbitrary code via a long argument to the (1) prompt or (2) defprompt command.
6 CVE-2005-2926 Exec Code Overflow 2005-10-25 2008-10-24
4.6
User Local Low Not required Partial Partial Partial
Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable.
7 CVE-2005-0993 Exec Code Overflow 2005-05-02 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users to execute arbitrary code via a long command line argument.
8 CVE-2005-0351 119 Exec Code Overflow 2005-04-07 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in (1) termsh, (2) atcronsh, and (3) auditsh in SCO OpenServer 5.0.6 and 5.0.7 might allow local users to execute arbitrary code via a long HOME environment variable.
9 CVE-2004-1307 Exec Code Overflow 2004-12-21 2010-08-21
7.5
User Remote Low Not required Partial Partial Partial
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow.
10 CVE-2004-1131 Exec Code Overflow 2005-02-07 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments.
11 CVE-2004-0510 Exec Code Overflow 2004-12-23 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.
12 CVE-2003-0834 Exec Code Overflow 2003-12-01 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME.
13 CVE-2002-1998 Exec Code Overflow 2002-12-31 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21).
14 CVE-2001-1508 Exec Code Overflow 2001-12-31 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in lpstat in SCO OpenServer 5.0 through 5.0.6a allows local users to execute arbitrary code as group bin via a long command line argument.
15 CVE-2001-1148 Overflow +Priv 2001-06-13 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh.
16 CVE-2001-0797 Exec Code Overflow 2001-12-12 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
17 CVE-2001-0588 Overflow +Priv 2001-08-22 2008-09-10
4.6
None Local Low Not required Partial Partial Partial
sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.
18 CVE-2001-0587 Overflow +Priv 2001-08-22 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.
19 CVE-2001-0579 Overflow +Priv 2001-08-22 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first argument to the command.
20 CVE-2001-0578 Overflow +Priv 2001-08-22 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in lpforms in SCO OpenServer 5.0-5.0.6 can allow a local attacker to gain additional privileges via a long first argument to the lpforms command.
21 CVE-2001-0577 Overflow +Priv 2001-08-22 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
recon in SCO OpenServer 5.0 through 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first command line argument.
22 CVE-2001-0576 Overflow +Priv 2001-08-22 2008-09-10
4.6
User Local Low Not required Partial Partial Partial
lpusers as included with SCO OpenServer 5.0 through 5.0.6 allows a local attacker to gain additional privileges via a buffer overflow attack in the '-u' command line parameter.
23 CVE-2001-0575 Overflow +Priv 2001-08-22 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut.
24 CVE-2000-0306 Overflow 2001-03-12 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.
25 CVE-2000-0158 Overflow +Priv 2000-02-16 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon.
26 CVE-2000-0130 Exec Code Overflow 2000-01-27 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in SCO scohelp program allows remote attackers to execute commands.
27 CVE-2000-0099 Overflow +Priv 2000-01-18 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument.
28 CVE-2000-0026 Overflow 1999-12-21 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string.
29 CVE-2000-0003 Overflow +Priv 1999-12-30 2008-09-10
10.0
None Remote Low Not required Complete Complete Complete
Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable.
30 CVE-1999-1571 Overflow +Priv 1999-11-04 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in sar for SCO OpenServer 5.0.0 through 5.0.5 may allow local users to gain root privileges via a long -f parameter, a different vulnerability than CVE-1999-1570.
31 CVE-1999-1185 Overflow +Priv 1998-10-06 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file.
32 CVE-1999-1041 Overflow 1998-08-27 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.
33 CVE-1999-0866 Overflow +Priv 1999-12-03 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in UnixWare xauto program allows local users to gain root privilege.
34 CVE-1999-0845 Overflow 1999-11-25 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in SCO su program allows local users to gain root access via a long username.
35 CVE-1999-0830 Overflow 1999-11-01 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in SCO UnixWare Xsco command via a long argument.
36 CVE-1999-0798 Overflow 1998-12-04 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.
37 CVE-1999-0693 Overflow +Priv 2000-03-02 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.
38 CVE-1999-0368 Overflow 1999-02-09 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.
39 CVE-1999-0131 DoS Overflow 1996-09-11 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.
40 CVE-1999-0033 Exec Code Overflow 1997-06-12 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Command execution in Sun systems via buffer overflow in the at program.
41 CVE-1999-0023 Overflow +Priv 1996-07-24 2008-09-09
7.2
Admin Local Low Not required Complete Complete Complete
Local user gains root privileges via buffer overflow in rdist, via lookup() function.
42 CVE-1999-0009 Overflow 1998-04-08 2008-09-09
10.0
Admin Remote Low Not required Complete Complete Complete
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
43 CVE-1999-0004 Overflow 1997-12-16 2008-09-09
5.0
None Remote Low Not required None None Partial
MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook.
Total number of vulnerabilities : 43   Page : 1 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.