CVE-2005-2926

Опубликовано: 25 окт. 2005

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable.

Ссылки

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.40/SCOSA-2005.40.txt
Patch
Vendor Advisory
http://secunia.com/advisories/17274
http://securitytracker.com/id?1015099
http://www.idefense.com/application/poi/display?type=vulnerabilities
http://www.osvdb.org/20153
http://www.osvdb.org/20154
http://www.securityfocus.com/bid/15160
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.40/SCOSA-2005.40.txt
Patch
Vendor Advisory
http://secunia.com/advisories/17274
http://securitytracker.com/id?1015099
http://www.idefense.com/application/poi/display?type=vulnerabilities
http://www.osvdb.org/20153
http://www.osvdb.org/20154
http://www.securityfocus.com/bid/15160

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:sco:openserver:*:*:*:*:*:*:*:*

Версия до 5.0.7 (включая)

EPSS

Процентиль: 39%

0.00173

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-prrq-w62p-245h

github

почти 4 года назад