CVE-2006-0072: Buffer Overflow
Published Jan 4, 2006
·Updated
Buffer overflow in termsh on SCO OpenServer 5.0.7 allows remote attackers to execute arbitrary code via a long -o command line argument. NOTE: this is probably a different vulnerability than CVE-2005-0351 since it involves a distinct attack vector.
Affected Software
9 affected components
SCO OpenServer=5.0
SCO OpenServer=5.0.1
SCO OpenServer=5.0.2
SCO OpenServer=5.0.3
SCO OpenServer=5.0.4
SCO OpenServer=5.0.5
SCO OpenServer=5.0.6
SCO OpenServer=5.0.6a
SCO OpenServer=5.0.7
Event History
Jan 4, 2006
CVE Published
12:03 AM
CVE Published
via MITRE·05:00 AM
Data Sourced
via MITRE·05:00 AM
Description
Frequently Asked Questions
1
What is the severity of CVE-2006-0072?
CVE-2006-0072 is classified as a critical vulnerability due to its potential for remote code execution.
2
How do I fix CVE-2006-0072?
To fix CVE-2006-0072, update your SCO OpenServer installation to a version that has patched this vulnerability.
3
Which versions of SCO OpenServer are affected by CVE-2006-0072?
CVE-2006-0072 affects SCO OpenServer versions 5.0 through 5.0.7.
4
What type of attack does CVE-2006-0072 exploit?
CVE-2006-0072 exploits a buffer overflow caused by a long -o command line argument.
5
Can CVE-2006-0072 be exploited remotely?
Yes, CVE-2006-0072 can be exploited remotely, allowing attackers to execute arbitrary code.