Product:

Unixware

(Caldera)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 20
Date Id Summary Products Score Patch Annotated
2002-11-04 CVE-2002-1231 SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to cause a denial of service via an rcp call on /proc. Openunix, Unixware N/A
2002-09-24 CVE-2002-0988 Buffer overflow in X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1, possibly related to XBM/xkbcomp capabilities. Openunix, Unixware N/A
2002-09-24 CVE-2002-0987 X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1 does not drop privileges before calling programs such as xkbcomp using popen, which could allow local users to gain privileges. Openunix, Unixware N/A
2002-09-24 CVE-2002-0981 Buffer overflow in ndcfg command for UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to execute arbitrary code via a long command line. Openunix, Unixware N/A
2002-10-04 CVE-2002-0885 Multiple buffer overflows in in.rarpd (ARP server) on Solaris, and possibly other operating systems including Caldera UnixWare and Open UNIX, allow remote attackers to execute arbitrary code, possibly via the functions (1) syserr and (2) error. Openunix, Unixware, Sunos N/A
2002-10-04 CVE-2002-0884 Multiple format string vulnerabilities in in.rarpd (ARP server) on Solaris, Caldera UnixWare and Open UNIX, and possibly other operating systems, allows remote attackers to execute arbitrary code via format strings that are not properly handled in the functions (1) syserr and (2) error. Openunix, Unixware, Sunos N/A
2002-08-12 CVE-2002-0827 Vulnerability in pppd on UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to gain root privileges via (1) ppptalk or (2) ppp, a different vulnerability than CVE-2002-0824. Openunix, Unixware N/A
2002-09-05 CVE-2002-0679 Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure. Openunix, Unixware, Tru64, Hp\-Ux, Aix, Solaris, Sunos, Dextop N/A
2002-07-23 CVE-2002-0678 CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure. Openunix, Unixware, Tru64, Hp\-Ux, Aix, Irix, Solaris, Sunos, Dextop N/A
2002-07-23 CVE-2002-0677 CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. Openunix, Unixware, Tru64, Hp\-Ux, Aix, Irix, Solaris, Sunos, Dextop N/A