Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-1014


Vulnerability Score 7.5 7.5
CVE Id CVE-2000-1014
Last Modified 05 Sep 2008 04:22:26
Published 11 Dec 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText parameter.

Vulnerable Systems

Operating System

  • Sco Unixware 7.0


XF - unixware-scohelp-format

BID - 1717

OSVDB - 3240

BUGTRAQ - 20000927 Unixware SCOhelp http server format string vulnerability

Last Updated: 27 May 2016 10:35:58