See also

SCO : UnixWare 7.0

CALDERA : Unixware 7

Name: SCO : UnixWare 7.1

6!	SCO Unixware pkgadd directory traversal
		It's possible to access any system files.
8!	Unzuthorized file access via file stdio decriptors in multiple Unix systems updated since 22.04.2002
		By exhausting all file descriptors and closing stderr it's possible to causesituation called application will open new file with descriptor 2 and all stderr output will be redirected to file. In few systems it's enougth to close standard descriptor.
	UnixWare / Solaris X11R6 buffer overflow updated since 08.09.2006
		Buffer overflow in XKEYBOARD extension.
	SCO Unixware ptrace privilege escalation updated since 22.02.2006
		ptrace can be attached to suid application.
6!	SCO uidadmin buffer overflow updated since 28.08.2001
		Buffer overflow on parsing -S command line parameter.
	SCO Unixware ppp buffer overflow updated since 21.10.2005
		Buffer overflow in /usr/bin/ppptalk.
6!	ICMP and TCP timestamp attacks to reset TCP connections updated since 13.04.2005
		By using different ICMP packet types and TCP timestamps values it's possible to cause TCP connection resets or performance decrease.
	SCO Unixware RPC request DoS
		Invalid bind request causes RPC portmapper service to hang.
6!	Multiple hardware platforms hyper threading technology systems information leak updated since 13.05.2005
		Unprivileged thread can read data from privileged thread memory from CPU cache memory.
	SCO UnixWare chroot protection bypass
	Unixware mountd DoS
		Multiple connections lead to system resources exhaustion.
6!	CDE libDtHelp buffer overflow updated since 05.11.2003
		Buffer overflow on DTHELPUSERSEARCHPATH/LOGNAME variable parsing.
6!	UnixWare/OpenServer/Open Unix XSco buffer overflow
		Buffer overflow on fonts aliases reading.
6!	UnixWare privilege escalation
		Problems with procfs lead to local privilege escalation.
6!	Multiple SNMP problems updated since 13.02.2002
		Multiple problems in different SNMP implementation can lead to DoS, remote code execution, etc.
	Caldera UnixWare/OpenUnix unescaped shell characters problem
		If | is used in filename shell comand may be executed by client on tertrieval.
	Format string vulnerability in KDE talkd updated since 24.05.2002
	Unixware/Open Unix rcp DoS
		rcp of /prog causes system to hang.
	Unixware ndcfg buffer overflow
		Command line buffer overflow.
7!	Multiple bugs in CDE ToolTalk updated since 11.07.2002
		Incomplete input validation in different remote calls.
6!	Buffer overflow in OpenUnix/Unixware ppp utils updated since 13.11.2001
6!	Buffer overflow in libX11 for OpenUnix
		Buffer overflow during -xrm command string argument parsing.
6!	Open Unix X-Server MIT-SHM module shared memory access
		It's possible to gain read/write access to any shared memory segment.
	Слабые разрешения в Unixware (weak permissions)
	Повышение привелегий через scoadminreg.cgi в Unixware (privelege escalation)
7!	Unixware/OpenUnix rpc.cmsd buffer overflow
	Символьные линки в CDE dtlogin (symbolic links)
	DoS против timed и rwhod в FreeBSD updated since 13.03.2001
	Проблемы в CDE с сохраненными сеансами xterm (privelege escalation)
	Дырки в утилитах Unixware (buffer overflow)