VDB
CVE-2001-1148
CVE-2001-1148
PUBLISHED
CVSS 4.599999904632568 MEDIUM
Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh.
EPSS 0.11% · 29.4th percentile
Risk Scores
CVSS 2.0
4.599999904632568
EPSS Score
0.11%
29.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| sco | openserver | 0 |
Timeline
- Jun 13, 2001 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 26, 2023 EPSS Score
References
- 20010613 SCO atcronsh auditsh termsh overflows mailing-list
- openserver-scoadmin-sysadm-bo(7281) vdb
- CSSA-2001-SCO.25 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2001-1148 advisory