threat
engine
.sh
Back
·
··:··
Home
/
Product
/
sco unixware
Product
sco unixware
88 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2009-1552
all versions
Unspecified vulnerability in the IGMP driver in SCO Unixware Release 7.1.4 Maintenance Pack 4 allows attackers to cause a denial o
CVE-2008-6559
all versions
Merge mcd in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain root privileges via a crafted -d argument that conta
CVE-2008-6558
all versions
Untrusted search path vulnerability in (1) hvdisp and (2) rcvm in ReliantHA 1.1.4 in SCO UnixWare 7.1.4 allows local users to gain
CVE-2008-0310
all versions
Directory traversal vulnerability in pkgadd in SCO UnixWare 7.1.4 before p534589 allows local users to create or append to arbitra
CVE-2008-1343
all versions
Directory traversal vulnerability in (1) pkgadd and (2) pkgrm in SCO UnixWare 7.1.4 allows local users to gain privileges via unkn
CVE-2006-4655
all versions
Buffer overflow in the Strcmp function in the XKEYBOARD extension in X Window System X11R6.4 and earlier, as used in SCO UnixWare
CVE-2005-2934
all versions
Unspecified vulnerability in ptrace in SCO UnixWare 7.1.3 and 7.1.4 allows local users to gain privileges via unspecified vectors.
CVE-2005-3903
all versions
Buffer overflow in uidadmin in SCO Unixware 7.1.3 and 7.1.4 allows local users to execute arbitrary code via a -S (scheme) argumen
CVE-2005-2927
all versions
Stack-based buffer overflow in ppp in SCO Unixware 7.1.3 and 7.1.4, and possibly earlier versions, allows local users to execute a
CVE-2005-2132
all versions
RPC portmapper (rpcbind) in SCO UnixWare 7.1.1 m5, 7.1.3 mp5, and 7.1.4 mp2 allows remote attackers or local users to cause a deni
CVE-2005-0134
all versions
The X server in SCO UnixWare 7.1.1, 7.1.3, and 7.1.4 does not properly create socket directories in /tmp, which could allow attack
CVE-2005-0109
all versions
Hyper-Threading technology, as used in FreeBSD and other operating systems that are run on Intel Pentium and other processors, all
5.6
MEDIUM
CVE-2004-1039
all versions
The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows re
CVE-2004-0996
all versions
main.c in cscope 15-4 and 15-5 creates temporary files with predictable filenames, which allows local users to overwrite arbitrary
CVE-2004-1307
all versions
Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitra
CVE-2004-0230
all versions
TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service
CVE-2004-1124
all versions
Unknown vulnerability in chroot on SCO UnixWare 7.1.1 through 7.1.4 allows local users to escape the chroot jail and conduct unaut
CVE-2003-0937
all versions
SCO UnixWare 7.1.1, 7.1.3, and Open UNIX 8.0.0 allows local users to bypass protections for the "as" address space file for a proc
CVE-2003-0914
all versions
ISC BIND 8.3.x before 8.3.7, and 8.4.x before 8.4.3, allows remote attackers to poison the cache via a malicious name server that
CVE-2003-0834
all versions
Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH envi
CVE-2003-0658
all versions
Docview before 1.1-18 in Caldera OpenLinux 3.1.1, SCO Linux 4.0, OpenServer 5.0.7, configures the Apache web server in a way that
CVE-2002-1998
all versions
Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a
CVE-2002-1323
all versions
Safe.pm 2.0.7 and earlier, when used in Perl 5.8.0 and earlier, may allow attackers to break out of safe compartments in (1) Safe:
CVE-2002-1231
all versions
SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to cause a denial of service via an rcp call on /proc.
CVE-2002-0885
all versions
Multiple buffer overflows in in.rarpd (ARP server) on Solaris, and possibly other operating systems including Caldera UnixWare and
CVE-2002-0884
all versions
Multiple format string vulnerabilities in in.rarpd (ARP server) on Solaris, Caldera UnixWare and Open UNIX, and possibly other ope
CVE-2002-0988
all versions
Buffer overflow in X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1, possibly related to XBM/xkbcomp capabilities.
CVE-2002-0987
all versions
X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1 does not drop privileges before calling programs such as xkbcomp using popen,
CVE-2002-0981
all versions
Buffer overflow in ndcfg command for UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to execute arbitrary code via a long co
CVE-2002-0679
all versions
Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to exec
CVE-2002-0827
all versions
Vulnerability in pppd on UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to gain root privileges via (1) ppptalk or (2) ppp,
CVE-2002-0517
all versions
Buffer overflow in X11 library (libX11) on Caldera Open UNIX 8.0.0, UnixWare 7.1.1, and possibly other operating systems, allows l
CVE-2002-0678
all versions
CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction
CVE-2002-0677
all versions
CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibl
CVE-2002-0311
all versions
Vulnerability in webtop in UnixWare 7.1.1 and Open UNIX 8.0.0 allows local and possibly remote attackers to gain root privileges v
CVE-2002-0246
all versions
Format string vulnerability in the message catalog library functions in UnixWare 7.1.1 allows local users to gain privileges by mo
CVE-2002-0105
all versions
CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink a
CVE-2001-1579
all versions
The timed program (in.timed) in UnixWare 7 and OpenUnix 8.0.0 does not properly terminate certain strings with a null, which allow
CVE-2001-1577
all versions
Unknown vulnerability in CDE in Caldera OpenUnix 7.1.0, 7.1.1, and 8.0 allows an xterm session to gain privileges when the session
CVE-2001-1576
all versions
Buffer overflow in cron in Caldera UnixWare 7 allows local users to execute arbitrary code via a command line argument.
CVE-2001-1478
all versions
Buffer overflow in xlock in UnixWare 7.1.0 and 7.1.1 and Open Unix 8.0.0 allows local users to execute arbitrary code.
CVE-2001-0858
all versions
Buffer overflow in pppattach and other linked PPP utilities in Caldera Open Unix 8.0 and UnixWare 7.1.0 and 7.1.1 allows local use
CVE-2001-1063
all versions
Buffer overflow in uidadmin in Caldera Open Unix 8.0.0 and UnixWare 7 allows local users to gain root privileges via a long -S (sc
CVE-2001-1164
all versions
Buffer overflow in uucp utilities in UnixWare 7 allows local users to execute arbitrary code via long command line arguments to (1
CVE-2000-0351
<= 7.1.0
Some packaging commands in SCO UnixWare 7.1.0 have insecure privileges, which allows local users to add or remove software package
CVE-2000-0349
<= 7.1.0
Vulnerability in the passthru driver in SCO UnixWare 7.1.0 allows an attacker to cause a denial of service.
CVE-2000-0348
<= 7.1.0
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and earlier allows an attacker t
CVE-2000-0308
<= 2.1.3
Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and
CVE-2000-0307
<= 2.1.3
Vulnerability in xserver in SCO UnixWare 2.1.x and OpenServer 5.05 and earlier allows an attacker to cause a denial of service whi
CVE-2000-1014
all versions
Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execu
CVE-2000-0842
all versions
The search97cgi/vtopic" in the UnixWare 7 scohelphttp webserver allows remote attackers to read arbitrary files via a .. (dot dot)
CVE-1999-0979
all versions
The SCO UnixWare privileged process system allows local users to gain root privileges by using a debugger such as gdb to insert tr
CVE-2000-0173
all versions
Vulnerability in the EELS system in SCO UnixWare 7.1.x allows remote attackers to cause a denial of service.
CVE-1999-0693
all versions
Buffer overflow in TT_SESSION environment variable in ToolTalk shared library allows local users to gain root privileges.
CVE-2000-0154
all versions
The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack.
CVE-2000-0224
all versions
ARCserve agent in SCO UnixWare 7.x allows local attackers to gain root privileges via a symlink attack.
CVE-2000-0215
all versions
Vulnerability in SCO cu program in UnixWare 7.x allows local users to gain privileges.
CVE-2000-0130
all versions
Buffer overflow in SCO scohelp program allows remote attackers to execute commands.
CVE-2000-0099
all versions
Buffer overflow in UnixWare ppptalk command allows local users to gain privileges via a long prompt argument.
CVE-1999-1307
all versions
Vulnerability in urestore in Novell UnixWare 1.1 allows local users to gain root privileges.
CVE-2000-0003
all versions
Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable.
CVE-2000-0029
all versions
UnixWare pis and mkpis commands allow local users to gain privileges via a symlink attack.
CVE-2000-0026
all versions
Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorizati
CVE-1999-0988
all versions
UnixWare pkgtrans allows local users to read arbitrary files via a symlink attack.
CVE-1999-0866
all versions
Buffer overflow in UnixWare xauto program allows local users to gain root privilege.
CVE-1999-0864
all versions
UnixWare programs that dump core allow a local user to modify files via a symlink attack on the ./core.pid file.
CVE-1999-0825
all versions
The default permissions for UnixWare /var/mail allow local users to read and modify other users' mail.
CVE-1999-0828
all versions
UnixWare pkg commands such as pkginfo, pkgcat, and pkgparam allow local users to read arbitrary files via the dacread permission.
CVE-1999-0845
all versions
Buffer overflow in SCO su program allows local users to gain root access via a long username.
CVE-1999-0851
all versions
Denial of service in BIND named via naptr.
CVE-1999-0835
all versions
Denial of service in BIND named via malformed SIG records.
CVE-1999-0830
all versions
Buffer overflow in SCO UnixWare Xsco command via a long argument.
CVE-1999-0942
all versions
UnixWare dos7utils allows a local user to gain root privileges by using the STATICMERGE environmental variable to find a script wh
CVE-1999-0368
all versions
Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.
CVE-1999-1450
<= 2.1.3
Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlie
CVE-1999-0798
all versions
Buffer overflow in bootpd on OpenBSD, FreeBSD, and Linux systems via a malformed header type.
CVE-1999-0836
all versions
UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack.
CVE-1999-0011
all versions
Denial of Service vulnerabilities in BIND 4.9 and BIND 8 Releases via CNAME record and zone transfer.
5.4
MEDIUM
CVE-1999-0010
all versions
Denial of Service vulnerability in BIND 8 Releases via maliciously formatted DNS messages.
CVE-1999-0009
all versions
Inverse query buffer overflow in BIND 4.9 and BIND 8 Releases.
CVE-1999-0004
all versions
MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook.
CVE-1999-0017
all versions
FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.
CVE-1999-0024
all versions
DNS cache poisoning via BIND, by predictable query IDs.
CVE-1999-0033
all versions
Command execution in Sun systems via buffer overflow in the at program.
CVE-1999-1252
all versions
Vulnerability in a certain system call in SCO UnixWare 2.0.x and 2.1.0 allows local users to access arbitrary files and gain root
CVE-1999-0023
all versions
Local user gains root privileges via buffer overflow in rdist, via lookup() function.
CVE-1999-0019
all versions
Delete or create a file via rpc.statd, due to invalid information.
CVE-1999-0078
all versions
pcnfsd (aka rpc.pcnfsd) allows local users to change file permissions, or execute arbitrary commands through arguments in the RPC
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin