Vulnerability Description
sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sco | Openserver | 5.0.6 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-03/0417.htmlExploitPatchVendor Advisory
- http://security-archive.merton.ox.ac.uk/bugtraq-200104/0221.html
- http://archives.neohapsis.com/archives/bugtraq/2001-03/0417.htmlExploitPatchVendor Advisory
- http://security-archive.merton.ox.ac.uk/bugtraq-200104/0221.html
FAQ
What is CVE-2001-0588?
CVE-2001-0588 is a vulnerability with a CVSS score of 4.6 (MEDIUM). sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local attacker to gain additional privileges via a buffer overflow in the first argument to the command.
How severe is CVE-2001-0588?
CVE-2001-0588 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0588?
Check the references section above for vendor advisories and patch information. Affected products include: Sco Openserver.