SCO : Security Vulnerabilities, CVEs, CVSS score between 6 and 6.99

CVE-2011-1432

The STARTTLS implementation in SCO SCOoffice Server does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.
Max CVSS
6.8
EPSS Score
0.15%
Published
2011-03-16
Updated
2017-08-17

CVE-2008-0310

Directory traversal vulnerability in pkgadd in SCO UnixWare 7.1.4 before p534589 allows local users to create or append to arbitrary files via ".." sequences in an unspecified environment variable, probably PKGINST.
Max CVSS
6.9
EPSS Score
0.04%
Published
2008-04-07
Updated
2017-09-29

CVE-1999-1162

Vulnerability in passwd in SCO UNIX 4.0 and earlier allows attackers to cause a denial of service by preventing users from being able to log into the system.
Max CVSS
6.4
EPSS Score
0.14%
Published
1993-05-24
Updated
2008-09-05
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close