Secunia CSI 5.0
Overview
Advisories
Research
Forums
Create Profile
Our Commitment
Database
Search
Advisories by Product
Advisories by Vendor
Terminology
Report Vulnerability
Insecure Library Loading

Secunia Advisory SA17645

SCO OpenServer update for Multiple Packages
Secunia Advisory SA17645
Get alerted and manage the vulnerability life cycle
Free Trial

Release Date 2005-11-18
Last Update 2005-11-25
   
Popularity 11,117 views
Comments 0 comments

Criticality level Extremely criticalExtremely critical
Impact Security Bypass
Cross Site Scripting
Spoofing
Manipulation of data
Exposure of system information
Exposure of sensitive information
DoS
System access
Where From remote
Authentication level Available in Customer Area
   
Report reliability Available in Customer Area
Solution Status Vendor Patch
   
Systems affected Available in Customer Area
Approve distribution Available in Customer Area
   
Operating System
SCO OpenServer 5.x
Secunia CVSS Score Available in Customer Area
CVE Reference(s) CVE-2004-0175 CVSS available in Customer Area
CVE-2004-0452 CVSS available in Customer Area
CVE-2004-0558 CVSS available in Customer Area
CVE-2004-0594 CVSS available in Customer Area
CVE-2004-0595 CVSS available in Customer Area
CVE-2004-0597 CVSS available in Customer Area
CVE-2004-0597 CVSS available in Customer Area
CVE-2004-0598 CVSS available in Customer Area
CVE-2004-0599 CVSS available in Customer Area
CVE-2004-0599 CVSS available in Customer Area
CVE-2004-0717 CVSS available in Customer Area
CVE-2004-0718 CVSS available in Customer Area
CVE-2004-0719 CVSS available in Customer Area
CVE-2004-0720 CVSS available in Customer Area
CVE-2004-0721 CVSS available in Customer Area
CVE-2004-0722 CVSS available in Customer Area
CVE-2004-0757 CVSS available in Customer Area
CVE-2004-0758 CVSS available in Customer Area
CVE-2004-0759 CVSS available in Customer Area
CVE-2004-0760 CVSS available in Customer Area
CVE-2004-0761 CVSS available in Customer Area
CVE-2004-0762 CVSS available in Customer Area
CVE-2004-0763 CVSS available in Customer Area
CVE-2004-0764 CVSS available in Customer Area
CVE-2004-0797 CVSS available in Customer Area
CVE-2004-0797 CVSS available in Customer Area
CVE-2004-0803 CVSS available in Customer Area
CVE-2004-0804 CVSS available in Customer Area
CVE-2004-0806 CVSS available in Customer Area
CVE-2004-0886 CVSS available in Customer Area
CVE-2004-0929 CVSS available in Customer Area
CVE-2004-0976 CVSS available in Customer Area
CVE-2004-1010 CVSS available in Customer Area
CVE-2004-1018 CVSS available in Customer Area
CVE-2004-1019 CVSS available in Customer Area
CVE-2004-1063 CVSS available in Customer Area
CVE-2004-1064 CVSS available in Customer Area
CVE-2004-1183 CVSS available in Customer Area
CVE-2004-1308 CVSS available in Customer Area
CVE-2005-0077 CVSS available in Customer Area
CVE-2005-0155 CVSS available in Customer Area
CVE-2005-0156 CVSS available in Customer Area
CVE-2005-0256 CVSS available in Customer Area
CVE-2005-0399 CVSS available in Customer Area
CVE-2005-0524 CVSS available in Customer Area
CVE-2005-0525 CVSS available in Customer Area
CVE-2005-0758 CVSS available in Customer Area
CVE-2005-0953 CVSS available in Customer Area
CVE-2005-0988 CVSS available in Customer Area
CVE-2005-0989 CVSS available in Customer Area
CVE-2005-1042 CVSS available in Customer Area
CVE-2005-1043 CVSS available in Customer Area
CVE-2005-1153 CVSS available in Customer Area
CVE-2005-1154 CVSS available in Customer Area
CVE-2005-1155 CVSS available in Customer Area
CVE-2005-1156 CVSS available in Customer Area
CVE-2005-1157 CVSS available in Customer Area
CVE-2005-1159 CVSS available in Customer Area
CVE-2005-1160 CVSS available in Customer Area
CVE-2005-1228 CVSS available in Customer Area
CVE-2005-1260 CVSS available in Customer Area
CVE-2005-1476 CVSS available in Customer Area
CVE-2005-1477 CVSS available in Customer Area
CVE-2005-1531 CVSS available in Customer Area
CVE-2005-1532 CVSS available in Customer Area
CVE-2005-1544 CVSS available in Customer Area
CVE-2005-1849 CVSS available in Customer Area
CVE-2005-2096 CVSS available in Customer Area
CVE-2005-2701 CVSS available in Customer Area
CVE-2005-2702 CVSS available in Customer Area
CVE-2005-2703 CVSS available in Customer Area
CVE-2005-2704 CVSS available in Customer Area
CVE-2005-2705 CVSS available in Customer Area
CVE-2005-2706 CVSS available in Customer Area
CVE-2005-2707 CVSS available in Customer Area
CVE-2005-2794 CVSS available in Customer Area
CVE-2005-2796 CVSS available in Customer Area
CVE-2005-2874 CVSS available in Customer Area
CVE-2005-2917 CVSS available in Customer Area
CVE-2005-2968 CVSS available in Customer Area
CVE-2005-3258 CVSS available in Customer Area
  

Description

SCO has issued a maintenance pack for OpenServer. This fixes various vulnerabilities in Mozilla, zip, libpng, zlib, libtiff, bzip2, openssh, php, perl, gzip, CUPS, wu-ftpd, cdrecord and squid, which can be exploited by malicious people to cause a DoS (Denial of Service), spoof the content of websites, gain knowledge of potentially sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, manipulate certain data, or compromise a user's system, and by malicious, local users to gain escalated privileges.

For more information:
SA12232
SA11978
SA12204
SA10856
SA14684
SA14821
SA14992
SA15292
SA16917
SA16846
SA13094
SA12219
SA11129
SA12818
SA13728
SA13607
SA15447
SA12450
SA12064
SA13481
SA14792
SA13643
SA12991
SA14120
SA14015
SA15320
SA11129
SA15949
SA16137
SA15047
SA12556
SA14411
SA12481
SA16708
SA16674
SA16992
SA17271
SA13510


Solution
Install Maintenance Pack 4 for SCO OpenServer 5.0.7.
Further details available in Customer Area

Changelog
Further details available in Customer Area

Original Advisory
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
ftp://ftp.sco.com/pub/openserver5/507/mp/osr507mp4/osr507mp4.htm
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.51/SCOSA-2005.51.txt

Other references
Further details available in Customer Area

Deep Links
Links available in Customer Area


Do you have additional information related to this advisory?

Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com

Subject: SCO OpenServer update for Multiple Packages
 
No posts yet

-

You must be logged in to post a comment.



 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Factsheets
Reports & Papers
Webinars
Events
 About us
Careers
Memberships
Newsroom
 
© 2002-2012 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability