Vulnerability Description
Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sco | Openserver | 5.0 |
| Sco | Unix | 3.2v4 |
References
- ftp://ftp.sco.com/SSE/security_bulletins/SB-98.05a
- http://marc.info/?l=bugtraq&m=90686250717719&w=2
- http://www.cert.org/vendor_bulletins/VB-98.10.sco.mscreenPatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/archive/1/10420Vendor Advisory
- ftp://ftp.sco.com/SSE/security_bulletins/SB-98.05a
- http://marc.info/?l=bugtraq&m=90686250717719&w=2
- http://www.cert.org/vendor_bulletins/VB-98.10.sco.mscreenPatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/archive/1/10420Vendor Advisory
FAQ
What is CVE-1999-1041?
CVE-1999-1041 is a vulnerability with a CVSS score of 7.2 (HIGH). Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.
How severe is CVE-1999-1041?
CVE-1999-1041 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1041?
Check the references section above for vendor advisories and patch information. Affected products include: Sco Openserver, Sco Unix.