QwikSec

Security Database

CVE

CWE

Training

CVE-2001-1148

Published: Mar 15, 2002

Modified: Aug 8, 2024

PUBLISHED

Description

Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20010613 SCO atcronsh auditsh termsh overflows

mailing-list

x_refsource_VULN-DEV

openserver-scoadmin-sysadm-bo(7281)

vdb-entry

x_refsource_XF

CSSA-2001-SCO.25

vendor-advisory

x_refsource_CALDERA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.