CyberSec.Space Logo
返回 CVE 浏览器

CVE-2003-0742

HIGH
7.2
CVSS Severity Score
EPSS Score0.1190%
EPSS Percentile39.73th
Published2003年10月6日
Last Modified2026年4月16日

Vulnerability Description

SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program.

Affected Platforms (CPE)

💻
Sco

Openserver

= 5.0.5
💻
Sco

Openserver

= 5.0.6
💻
Sco

Openserver

= 5.0.7

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2003-0742
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2003-0742

相关漏洞威胁

CVE-2000-030610.0

Buffer overflow in calserver in SCO OpenServer allows remote attackers to gain root access via a long message.

CVE-2020-254949.8

Xinuos (formerly SCO) Openserver v5 and v6 allows attackers to execute arbitrary commands via shell metacharacters in outputform o...

CVE-1999-14507.5

Vulnerability in (1) rlogin daemon rshd and (2) scheme on SCO UNIX OpenServer 5.0.5 and earlier, and SCO UnixWare 7.0.1 and earlie...

CVE-2001-05797.5

lpadmin in SCO OpenServer 5.0.6 can allow a local attacker to gain additional privileges via a buffer overflow attack in the first...