Vendor
Osh
Products
1
CVEs
2
Across products
2
Status
Private
Products
1- 2 CVEs
Recent CVEs
2| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2005-3533 | 0.03 | — | 0.01 | Dec 11, 2005 | Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename. | ||
| CVE-2005-3346 | 0.03 | — | 0.00 | Nov 20, 2005 | Buffer overflow in the environment variable substitution code in main.c in OSH 1.7-14 allows local users to inject arbitrary environment variables, such as LD_PRELOAD, via pathname arguments of the form "$VAR/EVAR=arg", which cause the EVAR portion to be appended to a buffer returned by a getenv function call. |
- CVE-2005-3533Dec 11, 2005risk 0.03cvss —epss 0.01
Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename.
- CVE-2005-3346Nov 20, 2005risk 0.03cvss —epss 0.00
Buffer overflow in the environment variable substitution code in main.c in OSH 1.7-14 allows local users to inject arbitrary environment variables, such as LD_PRELOAD, via pathname arguments of the form "$VAR/EVAR=arg", which cause the EVAR portion to be appended to a buffer returned by a getenv function call.