Buffer overflow vulnerabilities in SCO OpenServer 5.0.6a and earlier: Privilege escalation via long TERM environment variable

Buffer overflow vulnerabilities in SCO OpenServer 5.0.6a and earlier: Privilege escalation via long TERM environment variable

CVE-2001-1148 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Multiple buffer overflows in programs used by scoadmin and sysadmsh in SCO OpenServer 5.0.6a and earlier allow local users to gain privileges via a long TERM environment variable to (1) atcronsh, (2) auditsh, (3) authsh, (4) backupsh, (5) lpsh, (6) sysadm.menu, or (7) termsh.

Learn more about our Cis Benchmark Audit For Server Software.