Filtered by vendor Sco
Subscriptions
Total
129 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-1999-0024 | 6 Bsdi, Ibm, Isc and 3 more | 12 Bsd Os, Aix, Bind and 9 more | 2025-04-03 | N/A |
| DNS cache poisoning via BIND, by predictable query IDs. | ||||
| CVE-2002-1323 | 5 Redhat, Safe.pm, Sco and 2 more | 10 Enterprise Linux, Linux, Linux Advanced Workstation and 7 more | 2025-04-03 | N/A |
| Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls. | ||||
| CVE-1999-0368 | 7 Caldera, Debian, Proftpd Project and 4 more | 8 Openlinux, Debian Linux, Proftpd and 5 more | 2025-04-03 | N/A |
| Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto. | ||||
| CVE-1999-0825 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail. | ||||
| CVE-1999-0828 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission. | ||||
| CVE-1999-0830 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| Buffer overflow in SCO UnixWare Xsco command via a long argument. | ||||
| CVE-1999-0835 | 3 Ibm, Sco, Sun | 4 Aix, Openserver, Unixware and 1 more | 2025-04-03 | N/A |
| Denial of service in BIND named via malformed SIG records. | ||||
| CVE-1999-0845 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| Buffer overflow in SCO su program allows local users to gain root access via a long username. | ||||
| CVE-1999-0851 | 3 Ibm, Sco, Sun | 4 Aix, Openserver, Unixware and 1 more | 2025-04-03 | N/A |
| Denial of service in BIND named via naptr. | ||||
| CVE-1999-0893 | 1 Sco | 1 Openserver | 2025-04-03 | N/A |
| userOsa in SCO OpenServer allows local users to corrupt files via a symlink attack. | ||||
| CVE-1999-0942 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| UnixWare dos7utils allows a local user to gain root privileges by using the STATICMERGE environmental variable to find a script which it executes. | ||||
| CVE-1999-0979 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert traps into _init before the privileged process is executed. | ||||
| CVE-1999-1209 | 1 Sco | 2 Open Desktop, Openserver | 2025-04-03 | N/A |
| Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local users to gain root privileges. | ||||
| CVE-2001-1148 | 1 Sco | 1 Openserver | 2025-04-03 | N/A |
| Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh. | ||||
| CVE-2000-0215 | 1 Sco | 1 Unixware | 2025-04-03 | N/A |
| Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges. | ||||
| CVE-2003-0872 | 1 Sco | 1 Openserver | 2025-04-03 | N/A |
| Certain scripts in OpenServer before 5.0.6 allow local users to overwrite files and conduct other unauthorized activities via a symlink attack on temporary files. | ||||
| CVE-2003-0937 | 1 Sco | 2 Open Unix, Unixware | 2025-04-03 | N/A |
| SCO UnixWare 7.1.1, 7.1.3, and Open UNIX 8.0.0 allows local users to bypass protections for the "as" address space file for a process ID (PID) by obtaining a procfs file descriptor for the file and calling execve() on a setuid or setgid program, which leaves the descriptor open to the user. | ||||
| CVE-2005-3625 | 18 Conectiva, Debian, Easy Software Products and 15 more | 33 Linux, Debian Linux, Cups and 30 more | 2025-04-03 | N/A |
| Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely, as demonstrated using the (1) CCITTFaxDecode and (2) DCTDecode streams, aka "Infinite CPU spins." | ||||
| CVE-2003-0914 | 9 Compaq, Freebsd, Hp and 6 more | 10 Tru64, Freebsd, Hp-ux and 7 more | 2025-04-03 | N/A |
| ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value. | ||||
| CVE-1999-0524 | 11 Apple, Cisco, Hp and 8 more | 14 Mac Os X, Macos, Ios and 11 more | 2025-04-03 | N/A |
| ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts. | ||||