VYPR
Vendor

Open Group

Products
4
CVEs
8
Across products
8
Status
Private

Products

4

Recent CVEs

8
  • CVE-2025-71263HigMar 13, 2026
    risk 0.48cvss 7.4epss 0.00

    In UNIX Fourth Research Edition (v4), the su command is vulnerable to a buffer overflow due to the 'password' variable having a fixed size of 100 bytes. A local user can exploit this to gain root privileges. It is unlikely that UNIX v4 is running anywhere outside of a very small…

  • CVE-2001-0803Dec 6, 2001
    risk 0.10cvss epss 0.86

    Buffer overflow in the client connection routine of libDtSvc.so.1 in CDE Subprocess Control Service (dtspcd) allows remote attackers to execute arbitrary commands.

  • CVE-2002-0679Sep 5, 2002
    risk 0.02cvss epss 0.23

    Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.

  • CVE-2004-0368May 4, 2004
    risk 0.01cvss epss 0.11

    Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet.

  • CVE-2023-24039Jan 21, 2023
    risk 0.00cvss epss 0.00

    A stack-based buffer overflow in ParseColors in libXm in Common Desktop Environment 1.6 can be exploited by local low-privileged users via the dtprintinfo setuid binary to escalate their privileges to root on Solaris 10 systems. NOTE: This vulnerability only affects products…

  • CVE-2008-4315Nov 27, 2008
    risk 0.00cvss epss 0.03

    tog-pegasus in OpenGroup Pegasus 2.7.0 on Red Hat Enterprise Linux (RHEL) 5, Fedora 9, and Fedora 10 does not log failed authentication attempts to the OpenPegasus CIM server, which makes it easier for remote attackers to avoid detection of password guessing attacks.

  • CVE-2008-4313Nov 27, 2008
    risk 0.00cvss epss 0.01

    A certain Red Hat patch for tog-pegasus in OpenGroup Pegasus 2.7.0 does not properly configure the PAM tty name, which allows remote authenticated users to bypass intended access restrictions and send requests to OpenPegasus WBEM services.

  • CVE-2004-1771Nov 30, 2004
    risk 0.00cvss epss 0.01

    Scalable OGo (SOGo) 1.0 allows remote authenticated users to bypass intended permissions and view private appointments of other users.