|
|
|
|
SCO OpenServer update for Multiple Packages
|
|
Secunia Advisory:
|
SA17645
|
|
|
Release Date:
|
2005-11-18
|
|
Last Update:
|
2005-11-25
|
|
Popularity:
|
7,707 views
|
|
|
Critical:
|
 Extremely critical
|
|
Impact:
|
Security Bypass Cross Site Scripting Spoofing Manipulation of data Exposure of system information Exposure of sensitive information DoS System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | SCO OpenServer 5.x
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
| | CVE reference: | CVE-2004-0175 CVE-2004-0452 CVE-2004-0558 CVE-2004-0594 CVE-2004-0595 CVE-2004-0597 CVE-2004-0597 CVE-2004-0598 CVE-2004-0599 CVE-2004-0599 CVE-2004-0717 CVE-2004-0718 CVE-2004-0719 CVE-2004-0720 CVE-2004-0721 CVE-2004-0722 CVE-2004-0757 CVE-2004-0758 CVE-2004-0759 CVE-2004-0760 CVE-2004-0761 CVE-2004-0762 CVE-2004-0763 CVE-2004-0764 CVE-2004-0797 CVE-2004-0797 CVE-2004-0803 CVE-2004-0804 CVE-2004-0806 CVE-2004-0886 CVE-2004-0929 CVE-2004-0976 CVE-2004-1010 CVE-2004-1018 CVE-2004-1019 CVE-2004-1063 CVE-2004-1064 CVE-2004-1183 CVE-2004-1308 CVE-2005-0077 CVE-2005-0155 CVE-2005-0156 CVE-2005-0256 CVE-2005-0399 CVE-2005-0524 CVE-2005-0525 CVE-2005-0758 CVE-2005-0953 CVE-2005-0988 CVE-2005-0989 CVE-2005-1042 CVE-2005-1043 CVE-2005-1153 CVE-2005-1154 CVE-2005-1155 CVE-2005-1156 CVE-2005-1157 CVE-2005-1159 CVE-2005-1160 CVE-2005-1228 CVE-2005-1260 CVE-2005-1476 CVE-2005-1477 CVE-2005-1531 CVE-2005-1532 CVE-2005-1544 CVE-2005-1849 CVE-2005-2096 CVE-2005-2701 CVE-2005-2702 CVE-2005-2703 CVE-2005-2704 CVE-2005-2705 CVE-2005-2706 CVE-2005-2707 CVE-2005-2794 CVE-2005-2796 CVE-2005-2874 CVE-2005-2917 CVE-2005-2968 CVE-2005-3258
|
|
Description: SCO has issued a maintenance pack for OpenServer. This fixes various vulnerabilities in Mozilla, zip, libpng, zlib, libtiff, bzip2, openssh, php, perl, gzip, CUPS, wu-ftpd, cdrecord and squid, which can be exploited by malicious people to cause a DoS (Denial of Service), spoof the content of websites, gain knowledge of potentially sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, manipulate certain data, or compromise a user's system, and by malicious, local users to gain escalated privileges.
For more information:
SA12232
SA11978
SA12204
SA10856
SA14684
SA14821
SA14992
SA15292
SA16917
SA16846
SA13094
SA12219
SA11129
SA12818
SA13728
SA13607
SA15447
SA12450
SA12064
SA13481
SA14792
SA13643
SA12991
SA14120
SA14015
SA15320
SA11129
SA15949
SA16137
SA15047
SA12556
SA14411
SA12481
SA16708
SA16674
SA16992
SA17271
SA13510
Solution: Install Maintenance Pack 4 for SCO OpenServer 5.0.7.
4c87d840ff5b43221258547d19030228
ftp://ftp.sco.com/pub/openserver5/507/mp/osr507mp4/osr507mp4_vol.tar
Changelog: 2005-11-25: Added CVE reference. Updated "Description", "Original Advisory" and "Other References" sections.
Original Advisory: ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
ftp://ftp.sco.com/pub/openserver5/507/mp/osr507mp4/osr507mp4.htm
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.51/SCOSA-2005.51.txt
Other References: SA12232:
http://secunia.com/advisories/12232/
SA11978:
http://secunia.com/advisories/11978/
SA12204:
http://secunia.com/advisories/12204/
SA10856:
http://secunia.com/advisories/10856/
SA14684:
http://secunia.com/advisories/14684/
SA14821:
http://secunia.com/advisories/14821/
SA14992:
http://secunia.com/advisories/14992/
SA15292:
http://secunia.com/advisories/15292/
SA16917:
http://secunia.com/advisories/16917/
SA16846:
http://secunia.com/advisories/16846/
SA13094:
http://secunia.com/advisories/13094/
SA12219:
http://secunia.com/advisories/12219/
SA11129:
http://secunia.com/advisories/11129/
SA12818:
http://secunia.com/advisories/12818/
SA13728:
http://secunia.com/advisories/13728/
SA13607:
http://secunia.com/advisories/13607/
SA15447:
http://secunia.com/advisories/15447/
SA12450:
http://secunia.com/advisories/12450/
SA12064:
http://secunia.com/advisories/12064/
SA13481:
http://secunia.com/advisories/13481/
SA14792:
http://secunia.com/advisories/14792/
SA13643:
http://secunia.com/advisories/13643/
SA12991:
http://secunia.com/advisories/12991/
SA14120:
http://secunia.com/advisories/14120/
SA14015:
http://secunia.com/advisories/14015/
SA15320:
http://secunia.com/advisories/15320/
SA11129:
http://secunia.com/advisories/11129/
SA15949:
http://secunia.com/advisories/15949/
SA16137:
http://secunia.com/advisories/16137/
SA15047:
http://secunia.com/advisories/15047/
SA12556:
http://secunia.com/advisories/12556/
SA14411:
http://secunia.com/advisories/14411/
SA12481:
http://secunia.com/advisories/12481/
SA16708:
http://secunia.com/advisories/16708/
SA16674:
http://secunia.com/advisories/16674/
SA16992:
http://secunia.com/advisories/16992/
SA17271:
http://secunia.com/advisories/17271/
SA13510:
http://secunia.com/advisories/13510/
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
7th Oct, 2008
|
New advisories:
|
19 |
|
New vulnerabilities:
|
68 |
|
Updated advisories:
|
62 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Solutions | More...
|
|
|
|
Send Feedback to Secunia
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
|