Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0072

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0072
Last Modified 05 Sep 2008 04:58:16
Published 03 Jan 2006 07:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0072

Summary

Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.

Vulnerable Systems

Operating System

  • Sco Openserver 5.0

  • Sco Openserver 5.0.1

  • Sco Openserver 5.0.2

  • Sco Openserver 5.0.3

  • Sco Openserver 5.0.4

  • Sco Openserver 5.0.5

  • Sco Openserver 5.0.6

  • Sco Openserver 5.0.6a

  • Sco Openserver 5.0.7


References

BID - 16122

BUGTRAQ - 20060102 SCO Openserver 5.0.x exploit

MISC - http://downloads.securityfocus.com/vulnerabilities/exploits/Openserver_bof.c


Last Updated: 27 May 2016 10:41:31