Unixware
by SCO Group
CVEs (68)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2002-1231 | 0.00 | — | 0.00 | Nov 4, 2002 | SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to cause a denial of service via an rcp call on /proc. | |||
| CVE-2002-0988 | 0.00 | — | 0.02 | Sep 24, 2002 | Buffer overflow in X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1, possibly related to XBM/xkbcomp capabilities. | |||
| CVE-2001-1579 | 0.00 | — | 0.01 | Dec 31, 2001 | The timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0 does not properly terminate certain strings with a null, which allows remote attackers to cause a denial of service. | |||
| CVE-2000-0349 | 0.00 | — | 0.01 | Mar 12, 2001 | Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service. | |||
| CVE-2000-0308 | 0.00 | — | 0.02 | Mar 12, 2001 | Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges. | |||
| CVE-2000-0351 | 0.00 | — | 0.00 | Mar 12, 2001 | Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages. | |||
| CVE-2000-0307 | 0.00 | — | 0.01 | Mar 12, 2001 | Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024. | |||
| CVE-2000-0348 | 0.00 | — | 0.02 | Mar 12, 2001 | A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges. | |||
| CVE-2000-0842 | 0.00 | — | 0.02 | Nov 14, 2000 | The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack. | |||
| CVE-2000-0173 | 0.00 | — | 0.01 | Mar 10, 2000 | Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service. | |||
| CVE-2000-0215 | 0.00 | — | 0.00 | Feb 8, 2000 | Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges. | |||
| CVE-2000-0130 | 0.00 | — | 0.01 | Jan 27, 2000 | Buffer overflow in SCO scohelp program allows remote attackers to execute commands. | |||
| CVE-2000-0099 | 0.00 | — | 0.00 | Jan 18, 2000 | Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument. | |||
| CVE-2000-0003 | 0.00 | — | 0.01 | Dec 30, 1999 | Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable. | |||
| CVE-2000-0029 | 0.00 | — | 0.00 | Dec 27, 1999 | UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack. | |||
| CVE-1999-0851 | 0.00 | — | 0.00 | Nov 10, 1999 | Denial of service in BIND named via naptr. | |||
| CVE-1999-0835 | 0.00 | — | 0.01 | Nov 10, 1999 | Denial of service in BIND named via malformed SIG records. | |||
| CVE-1999-0942 | 0.00 | — | 0.00 | Oct 4, 1999 | UnixWare dos7utils allows a local user to gain root privileges by using the STATICMERGE environmental variable to find a script which it executes. | |||
| CVE-1999-1450 | 0.00 | — | 0.02 | Jan 27, 1999 | Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges. | |||
| CVE-1999-0798 | 0.00 | — | 0.02 | Dec 4, 1998 | Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type. |
- CVE-2002-1231Nov 4, 2002risk 0.00cvss —epss 0.00
SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to cause a denial of service via an rcp call on /proc.
- CVE-2002-0988Sep 24, 2002risk 0.00cvss —epss 0.02
Buffer overflow in X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1, possibly related to XBM/xkbcomp capabilities.
- CVE-2001-1579Dec 31, 2001risk 0.00cvss —epss 0.01
The timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0 does not properly terminate certain strings with a null, which allows remote attackers to cause a denial of service.
- CVE-2000-0349Mar 12, 2001risk 0.00cvss —epss 0.01
Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service.
- CVE-2000-0308Mar 12, 2001risk 0.00cvss —epss 0.02
Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and 2.1.3 allow an attacker to gain root privileges.
- CVE-2000-0351Mar 12, 2001risk 0.00cvss —epss 0.00
Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software packages.
- CVE-2000-0307Mar 12, 2001risk 0.00cvss —epss 0.01
Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service which prevents access to reserved port numbers below 1024.
- CVE-2000-0348Mar 12, 2001risk 0.00cvss —epss 0.02
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges.
- CVE-2000-0842Nov 14, 2000risk 0.00cvss —epss 0.02
The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack.
- CVE-2000-0173Mar 10, 2000risk 0.00cvss —epss 0.01
Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service.
- CVE-2000-0215Feb 8, 2000risk 0.00cvss —epss 0.00
Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges.
- CVE-2000-0130Jan 27, 2000risk 0.00cvss —epss 0.01
Buffer overflow in SCO scohelp program allows remote attackers to execute commands.
- CVE-2000-0099Jan 18, 2000risk 0.00cvss —epss 0.00
Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument.
- CVE-2000-0003Dec 30, 1999risk 0.00cvss —epss 0.01
Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable.
- CVE-2000-0029Dec 27, 1999risk 0.00cvss —epss 0.00
UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.
- CVE-1999-0851Nov 10, 1999risk 0.00cvss —epss 0.00
Denial of service in BIND named via naptr.
- CVE-1999-0835Nov 10, 1999risk 0.00cvss —epss 0.01
Denial of service in BIND named via malformed SIG records.
- CVE-1999-0942Oct 4, 1999risk 0.00cvss —epss 0.00
UnixWare dos7utils allows a local user to gain root privileges by using the STATICMERGE environmental variable to find a script which it executes.
- CVE-1999-1450Jan 27, 1999risk 0.00cvss —epss 0.02
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges.
- CVE-1999-0798Dec 4, 1998risk 0.00cvss —epss 0.02
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.
Page 3 of 4