Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2927

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-2927
Last Modified 10 Sep 2008 03:44:13
Published 25 Oct 2005 12:02:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2927

Summary

Stack-based buffer overflow in ppp in SCO Unixware 7.1.3 and 7.1.4, and possibly earlier versions, allows local users to execute arbitrary code via a long argument to the (1) prompt or (2) defprompt command.

Vulnerable Systems

Operating System

  • Sco Unixware 7.1.3

  • Sco Unixware 7.1.4


References

SCO - SCOSA-2005.41

BID - 15159

OSVDB - 20155

IDEFENSE - 20051024 SCO Unixware Setuid ppp prompt Buffer Overflow Vulnerability

SECTRACK - 1015098

SREASON - 101

SECUNIA - 17275


Last Updated: 27 May 2016 10:40:40