Vulnerabilities (CVE)

Filtered by vendor Sco Subscribe
Filtered by product Unixware
Total 66 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2000-0154 1 Sco 1 Unixware 2024-02-28 1.2 LOW N/A
The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack.
CVE-2000-0173 1 Sco 1 Unixware 2024-02-28 5.0 MEDIUM N/A
Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service.
CVE-2000-0029 1 Sco 1 Unixware 2024-02-28 4.6 MEDIUM N/A
UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.
CVE-2000-0215 1 Sco 1 Unixware 2024-02-28 7.2 HIGH N/A
Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges.
CVE-2000-0842 1 Sco 1 Unixware 2024-02-28 5.0 MEDIUM N/A
The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbitrary files via a .. (dot dot) attack.
CVE-2003-0914 9 Compaq, Freebsd, Hp and 6 more 10 Tru64, Freebsd, Hp-ux and 7 more 2024-02-28 4.3 MEDIUM N/A
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that returns negative responses with a large TTL (time-to-live) value.
CVE-2002-1998 1 Sco 2 Open Unix, Unixware 2024-02-28 7.5 HIGH N/A
Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21).
CVE-1999-0825 1 Sco 1 Unixware 2024-02-28 3.6 LOW N/A
The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.
CVE-1999-0988 1 Sco 1 Unixware 2024-02-28 7.2 HIGH N/A
UnixWare pkgtrans allows local users to read arbitrary files via a symlink attack.
CVE-2001-1579 1 Sco 2 Open Unix, Unixware 2024-02-28 5.0 MEDIUM N/A
The timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0 does not properly terminate certain strings with a null, which allows remote attackers to cause a denial of service.
CVE-2004-1307 10 Apple, Avaya, Conectiva and 7 more 19 Mac Os X, Mac Os X Server, Call Management System Server and 16 more 2024-02-28 7.5 HIGH N/A
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be allocated and leads to a heap-based buffer overflow.
CVE-1999-0836 1 Sco 1 Unixware 2024-02-28 10.0 HIGH N/A
UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack.
CVE-1999-0942 1 Sco 1 Unixware 2024-02-28 7.2 HIGH N/A
UnixWare dos7utils allows a local user to gain root privileges by using the STATICMERGE environmental variable to find a script which it executes.
CVE-2000-0349 1 Sco 1 Unixware 2024-02-28 5.0 MEDIUM N/A
Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service.
CVE-1999-0866 1 Sco 1 Unixware 2024-02-28 7.2 HIGH N/A
Buffer overflow in UnixWare xauto program allows local users to gain root privilege.
CVE-1999-0010 8 Data General, Ibm, Isc and 5 more 11 Dg Ux, Aix, Bind and 8 more 2024-02-28 5.0 MEDIUM N/A
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
CVE-2000-0348 1 Sco 1 Unixware 2024-02-28 10.0 HIGH N/A
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker to gain root privileges.
CVE-1999-1252 1 Sco 1 Unixware 2024-02-28 7.2 HIGH N/A
Vulnerability in a certain system call in SCO UnixWare 2.0.x and 2.1.0 allows local users to access arbitrary files and gain root privileges.
CVE-2000-0099 1 Sco 1 Unixware 2024-02-28 7.2 HIGH N/A
Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument.
CVE-2002-1323 5 Redhat, Safe.pm, Sco and 2 more 9 Enterprise Linux, Linux Advanced Workstation, Safe.pm and 6 more 2024-02-28 4.6 MEDIUM N/A
Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe::reval or (2) Safe::rdo using a redefined @_ variable, which is not reset between successive calls.