Santa Cruz Operation (SCO) OpenServer 5.0.6
Approved changes feed: RSS · Atom
cpe:2.3:o:sco:openserver:5.0.6:*:*:*:*:*:*:*
part: o version: 5.0.6 update: *
| Vendor | Sco (8a7b4ff4-f0ef-5eb2-a676-8694bf3a5407) |
|---|---|
| Product | Openserver (c0d07576-c403-5ab0-85f1-50d7038f9946) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2006-0072 |
vulnerable | 2026-06-03 14:27:15.138133 |
Details available
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.
Published: 2006-01-04T00:00:00.000Z
Updated: 2024-08-07T16:18:20.750Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2005-0993 |
vulnerable | 2026-06-03 14:26:52.094127 |
Details available
Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users to execute arbitrary code via a long command line argument.
Published: 2005-04-07T04:00:00.000Z
Updated: 2024-08-07T21:35:59.548Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2005-0351 |
vulnerable | 2026-06-03 14:26:50.135828 |
Details available
Buffer overflow in (1) termsh, (2) atcronsh, and (3) auditsh in SCO OpenServer 5.0.6 and 5.0.7 might allow local users to execute arbitrary code via a long HOME environment variable.
Published: 2005-04-09T04:00:00.000Z
Updated: 2024-08-07T21:13:54.041Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-1131 |
vulnerable | 2026-06-03 14:26:38.532319 |
Details available
Multiple buffer overflows in the enable command for SCO OpenServer 5.0.6 and 5.0.7 allow local users to execute arbitrary code via long command line arguments.
Published: 2005-02-08T05:00:00.000Z
Updated: 2024-08-08T00:39:00.829Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-1124 |
vulnerable | 2026-06-03 14:26:38.521788 |
Details available
Unknown vulnerability in chroot on SCO UnixWare 7.1.1 through 7.1.4 allows local users to escape the chroot jail and conduct unauthorized activities.
Published: 2005-01-29T05:00:00.000Z
Updated: 2024-08-08T00:39:00.939Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-1082 |
vulnerable | 2026-06-03 14:26:38.372410 |
Details available
mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials.
Published: 2005-04-21T04:00:00.000Z
Updated: 2024-08-08T00:39:00.872Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-1039 |
vulnerable | 2026-06-03 14:26:38.108626 |
Details available
The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a series of requests, which causes inetd to launch a separate process for each request.
Published: 2005-01-19T05:00:00.000Z
Updated: 2024-08-08T00:39:00.543Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0512 |
vulnerable | 2026-06-03 14:26:35.716795 |
Details available
Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a core dump.
Published: 2004-10-28T04:00:00.000Z
Updated: 2024-08-08T00:17:15.246Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0511 |
vulnerable | 2026-06-03 14:26:35.716437 |
Details available
Multiple unknown vulnerabilities in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to cause a denial of service by triggering a null dereference.
Published: 2004-10-28T04:00:00.000Z
Updated: 2024-08-08T00:17:15.264Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0510 |
vulnerable | 2026-06-03 14:26:35.713005 |
Details available
Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.
Published: 2004-10-28T04:00:00.000Z
Updated: 2024-08-08T00:17:15.167Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0390 |
vulnerable | 2026-06-03 14:26:35.379335 |
Details available
SCO OpenServer 5.0.5 through 5.0.7 only supports Xauthority style access control when users log in using scologin, which allows remote attackers to gain unauthorized access to an X session via other X login methods.
Published: 2005-04-14T04:00:00.000Z
Updated: 2024-08-08T00:17:14.508Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0112 |
vulnerable | 2026-06-03 14:26:34.299035 |
Details available
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that causes an out-of-bounds read.
Published: 2004-03-18T05:00:00.000Z
Updated: 2024-08-08T00:10:03.359Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0081 |
vulnerable | 2026-06-03 14:26:34.203323 |
Details available
OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
Published: 2004-03-18T05:00:00.000Z
Updated: 2024-08-08T00:01:23.650Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2004-0079 |
vulnerable | 2026-06-03 14:26:34.073813 |
Details available
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
Published: 2004-03-18T05:00:00.000Z
Updated: 2025-01-16T17:33:22.869Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2003-1021 |
not_vulnerable | 2026-06-03 14:26:27.161031 |
Details available
The scosession program in OpenServer 5.0.6 and 5.0.7 allows local users to gain privileges via crafted strings on the commandline.
Published: 2005-02-06T05:00:00.000Z
Updated: 2024-08-08T02:12:35.485Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2003-0742 |
vulnerable | 2026-06-03 14:26:26.407345 |
Details available
SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program.
Published: 2003-09-19T04:00:00.000Z
Updated: 2024-08-08T02:05:12.358Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2003-0597 |
vulnerable | 2026-06-03 14:26:26.017572 |
Details available
Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges.
Published: 2003-07-25T04:00:00.000Z
Updated: 2024-08-08T01:58:11.193Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2002-1199 |
vulnerable | 2026-06-03 14:26:16.095398 |
Details available
The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.
Published: 2004-09-01T04:00:00.000Z
Updated: 2024-08-08T03:19:27.865Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2002-0716 |
vulnerable | 2026-06-03 14:26:14.935563 |
Details available
Format string vulnerability in crontab for SCO OpenServer 5.0.5 and 5.0.6 allows local users to gain privileges via format string specifiers in the file name argument.
Published: 2003-04-02T05:00:00.000Z
Updated: 2024-08-08T02:56:38.763Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2001-1578 |
vulnerable | 2026-06-03 14:26:12.967892 |
Details available
Unknown vulnerability in SCO OpenServer 5.0.6 and earlier allows local users to modify critical information such as certain CPU registers and segment descriptors.
Published: 2005-08-05T04:00:00.000Z
Updated: 2024-09-16T20:57:46.016Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2001-0797 |
vulnerable | 2026-06-03 14:26:02.263843 |
Details available
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
Published: 2002-06-25T04:00:00.000Z
Updated: 2024-08-08T04:30:06.151Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2001-0627 |
vulnerable | 2026-06-03 14:26:01.981454 |
Details available
vi as included with SCO OpenServer 5.0 - 5.0.6 allows a local attacker to overwrite arbitrary files via a symlink attack.
Published: 2002-03-09T05:00:00.000Z
Updated: 2024-08-08T04:30:05.944Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2001-0588 |
vulnerable | 2026-06-03 14:26:01.913652 |
Details available
sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.
Published: 2001-07-27T04:00:00.000Z
Updated: 2024-08-08T04:30:05.520Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2001-0587 |
vulnerable | 2026-06-03 14:26:01.913390 |
Details available
deliver program in MMDF 2.43.3b in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.
Published: 2001-07-27T04:00:00.000Z
Updated: 2024-08-08T04:30:04.802Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2001-0575 |
vulnerable | 2026-06-03 14:26:01.897141 |
Details available
Buffer overflow in lpshut in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a long first argument to lpshut.
Published: 2001-07-27T04:00:00.000Z
Updated: 2024-08-08T04:21:38.618Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.