Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1148

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-1148
Last Modified 05 Sep 2008 04:25:48
Published 13 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1148

Summary

Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh.

Vulnerable Systems

Operating System

  • Sco Openserver 5.0.6a


References

CALDERA - CSSA-2001-SCO.25

VULN-DEV - 20010613 SCO atcronsh auditsh termsh overflows

XF - openserver-scoadmin-sysadm-bo(7281)


Last Updated: 27 May 2016 10:36:32