Vulnerability Details : CVE-1999-1041
Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.
Vulnerability category: Overflow
Exploit prediction scoring system (EPSS) score for CVE-1999-1041
Probability of exploitation activity in the next 30 days: 0.06%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 24 % EPSS Score History EPSS FAQ
CVSS scores for CVE-1999-1041
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
References for CVE-1999-1041
-
ftp://ftp.sco.com/SSE/security_bulletins/SB-98.05a
- http://marc.info/?l=bugtraq&m=90686250717719&w=2
-
http://www.cert.org/vendor_bulletins/VB-98.10.sco.mscreen
Patch;Third Party Advisory;US Government Resource
-
http://www.securityfocus.com/archive/1/10420
Vendor Advisory
Products affected by CVE-1999-1041
- cpe:2.3:o:sco:unix:3.2v4:*:*:*:*:*:*:*
- cpe:2.3:o:sco:openserver:5.0:*:*:*:*:*:*:*