CVE-2005-2926

Sažetak

Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable.

Reference

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.40/SCOSA-2005.40.txt
http://secunia.com/advisories/17274
http://securitytracker.com/id?1015099
http://www.idefense.com/application/poi/display?type=vulnerabilities
http://www.osvdb.org/20153
http://www.osvdb.org/20154
http://www.securityfocus.com/bid/15160

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

09-10-2019 - 22:48

Objavljeno

25-10-2005 - 16:02