Multiple buffer overflows in MMDF on OpenServer 5.0.6 and 5.0.7, and possibly other operating systems, may allow attackers to execute arbitrary code, as demonstrated via the execmail program.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Openserver | Sco | 5.0.6 (including) | 5.0.6 (including) |
| Openserver | Sco | 5.0.6a (including) | 5.0.6a (including) |
| Openserver | Sco | 5.0.7 (including) | 5.0.7 (including) |
References
- ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.7/SCOSA-2004.7.txt
- http://marc.info/?l=bugtraq\u0026m=109889281711636\u0026w=2
- http://www.deprotect.com/advisories/DEPROTECT-20040206.txt
- http://www.securityfocus.com/bid/10758
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16738
- ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.7/SCOSA-2004.7.txt
- http://marc.info/?l=bugtraq\u0026m=109889281711636\u0026w=2
- http://www.deprotect.com/advisories/DEPROTECT-20040206.txt
- http://www.securityfocus.com/bid/10758
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16738