ScoCVEs & Vulnerabilities

129 CVEs affecting Sco products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

openserver 157unixware 127open desktop 29unix 25internet faststart 13openserver enterprise system 5open desktop lite 5open unix 5
CVE-1999-0476HIGH

A weak encryption algorithm is used for passwords in SCO TermVision, allowing them to be easily decrypted by a local user.

1 Mar 1999
7.2
CVSS
CVE-1999-0368CRITICALpoc

Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.

9 Feb 1999
10.0
CVSS
CVE-1999-1450HIGH

Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlier, allows remote attackers to gain privileges.

27 Jan 1999
7.5
CVSS
CVE-1999-0798CRITICAL

Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.

4 Dec 1998
10.0
CVSS
CVE-1999-0836CRITICALpoc

UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack.

2 Dec 1998
10.0
CVSS
CVE-1999-1185HIGHpoc

Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file.

6 Oct 1998
7.2
CVSS
CVE-1999-1041HIGHpoc

Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.

27 Aug 1998
7.2
CVSS
CVE-1999-0010MEDIUM

Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.

8 Apr 1998
5.0
CVSS
CVE-1999-0011MEDIUM

Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.

8 Apr 1998
5.4
CVSS
CVE-1999-0009CRITICALpoc

Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.

8 Apr 1998
10.0
CVSS
CVE-1999-0004MEDIUM

MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook.

16 Dec 1997
5.0
CVSS
CVE-1999-0017HIGH

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.

10 Dec 1997
7.5
CVSS
CVE-1999-1209HIGH

Vulnerability in scoterm in SCO OpenServer 5.0 and SCO Open Desktop/Open Server 3.0 allows local users to gain root privileges.

20 Nov 1997
7.2
CVSS
CVE-1999-0024MEDIUM

DNS cache poisoning via BIND, by predictable query IDs.

13 Aug 1997
5.0
CVSS
CVE-1999-0524MEDIUM

ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.

1 Aug 1997
4.0
CVSS
CVE-1999-0153MEDIUMpoc

Windows 95/NT out of band (OOB) data denial of service through NETBIOS port, aka WinNuke.

1 Jul 1997
5.0
CVSS
CVE-1999-0033HIGH

Command execution in Sun systems via buffer overflow in the at program.

12 Jun 1997
7.2
CVSS
CVE-1999-0345MEDIUM

Jolt ICMP attack causes a denial of service in Windows 95 and Windows NT systems.

1 Jan 1997
5.0
CVSS
CVE-1999-0128MEDIUMpoc

Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.

18 Dec 1996
5.0
CVSS
CVE-1999-0096MEDIUM

Sendmail decode alias can be used to overwrite sensitive files.

10 Dec 1996
5.0
CVSS
CVE-1999-0129MEDIUM

Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

3 Dec 1996
4.6
CVSS
CVE-1999-0131HIGH

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

11 Sep 1996
7.2
CVSS
CVE-1999-1252HIGH

Vulnerability in a certain system call in SCO UnixWare 2.0.x and 2.1.0 allows local users to access arbitrary files and gain root privileges.

4 Sep 1996
7.2
CVSS
CVE-1999-0023HIGHpoc

Local user gains root privileges via buffer overflow in rdist, via lookup() function.

24 Jul 1996
7.2
CVSS
CVE-1999-1253HIGH

Vulnerability in a kernel error handling routine in SCO OpenServer 5.0.2 and earlier, and SCO Internet FastStart 1.0, allows local users to gain root privileges.

7 Jun 1996
7.2
CVSS
CVE-1999-0019MEDIUM

Delete or create a file via rpc.statd, due to invalid information.

24 Apr 1996
5.0
CVSS
CVE-1999-0078LOW

pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC call.

18 Apr 1996
1.9
CVSS
CVE-1999-1302HIGH

Unspecified vulnerability in pt_chmod in SCO UNIX 4.2 and earlier allows local users to gain root access.

30 Nov 1994
7.2
CVSS
CVE-1999-1303HIGH

Vulnerability in prwarn in SCO UNIX 4.2 and earlier allows local users to gain root access.

30 Nov 1994
7.2
CVSS
CVE-1999-1304HIGH

Vulnerability in login in SCO UNIX 4.2 and earlier allows local users to gain root access.

30 Nov 1994
7.2
CVSS
CVE-1999-1305HIGH

Vulnerability in "at" program in SCO UNIX 4.2 and earlier allows local users to gain root access.

30 Nov 1994
7.2
CVSS
CVE-1999-1138CRITICAL

SCO UNIX System V/386 Release 3.2, and other SCO products, installs the home directories (1) /tmp for the dos user, and (2) /usr/tmp for the asg user, which allows other users to gain access to those accounts since /tmp and /usr/tmp are world-writable.

17 Sep 1993
10.0
CVSS
CVE-1999-1162MEDIUM

Vulnerability in passwd in SCO UNIX 4.0 and earlier allows attackers to cause a denial of service by preventing users from being able to log into the system.

24 May 1993
6.4
CVSS
← PrevPage 3 / 3Next →
Sco CVEs & Vulnerabilities — 129 Tracked — Page 3